r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3901
Expires: Sat, 28 Jan 2023 18:53:11 GMT
Date: Sat, 28 Jan 2023 17:48:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4358
Expires: Sat, 28 Jan 2023 19:00:48 GMT
Date: Sat, 28 Jan 2023 17:48:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7316
Expires: Sat, 28 Jan 2023 19:50:06 GMT
Date: Sat, 28 Jan 2023 17:48:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 17:35:31 GMT
content-type: application/json
age: 759
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ri7M+yE7Jy6fsqF9br4dw5i3eQAsquPAGH9T3u89cn9/wj99gJFPO1yBFfp7Vbw3KqQrKAbj2tA=
x-amz-request-id: HV86FFAXRY4PXAK7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 16:49:58 GMT
age: 3492
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 17:48:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 16:49:03 GMT
age: 3547
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16974
Expires: Sat, 28 Jan 2023 22:31:05 GMT
Date: Sat, 28 Jan 2023 17:48:11 GMT
Connection: keep-alive
push.services.mozilla.com/
54.202.152.202101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.152.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oq+zRGJDJIxBh8thOKQ6Rw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sL82V3V93eZI8ZYJeVyftKqoFKg=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3315
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:11 GMT
Last-Modified: Sat, 28 Jan 2023 16:52:56 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
95.101.10.120200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 17:48:11 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=D6Z0SHSOobZlCE5NasSFbw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?id=AW-984436569
95.101.10.120200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?id=AW-984436569
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?id=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 17:48:11 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=owRSele5QBMepl8MQJjsSg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css
95.101.10.194200 OK 2.0 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (11856), with no line terminators
Hash 425366300c0899e1c2287dd1899c8547
8721ad13af993db12da3f8b7393dc513871bd4b1
de61945d0a98db287e55bfb06cb6ed596d57541ffacda95337b49524ae85fa0a
GET /auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2005
Last-Modified: Wed, 08 Jun 2022 01:32:21 GMT
Vary: Accept-Encoding
ETag: "629ffc25-7d5"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 17:48:11 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Z81TUAxYDT1KJzkWL4728w%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ytc/ytc.js
95.101.10.120200 OK 5.6 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ytc/ytc.js
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (15032)
Hash c48fe5e804797f0f227c7b840d74a48c
af0ab8fe13f1dc1de7363cfbfc14eacf766a13c2
1a2fbaccd0201b433a5fe36253718facae1b50d23d6af5884279f563a7494c2f
GET /tracking/ytc/ytc.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 15 Jul 2021 21:00:28 GMT
Vary: Accept-Encoding
ETag: W/"60f0a1ec-3ad3"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 5614
Date: Sat, 28 Jan 2023 17:48:11 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=+GrkP0QVtX6qA9sbu50nFA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css
95.101.10.194200 OK 16 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 99759237b20cd3c540a9cfb654e6fed0
b2fc0ff3b04906ad729e9e4da97983570c84df9d
c741774a7eb847427dfef76c64b3b05180a059dbc7ca1ec4b35bcbdea2ce9f83
GET /auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 16482
Last-Modified: Wed, 08 Jun 2022 01:32:22 GMT
Vary: Accept-Encoding
ETag: "629ffc26-4062"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 17:48:11 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=WkFKahG8qTViDw%2fLeeTfCA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b&session=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b
116.118.50.194200 OK 26 kB URL HTTP/1.1 bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b&session=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b
IP 116.118.50.194:0
ASN #63760 AZDIGI Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (23013), with CRLF line terminators
Hash 36d0e9d85b59b3f842b36f852d468813
1b2c8db1f96c3b1402299656bfcc06d53e59db9c
fa3a71d45298fc9011b5b03c66cd14e4868b3e5184e6245675d5cab99bc1e9fd
Analyzer Verdict Alert openphish Wells Fargo & Company
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
suricata medium ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22
GET /wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b&session=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b HTTP/1.1
Host: bgitopazdowntown.ddireal.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
set-cookie: PHPSESSID=fpbia4qh5itah03u09v7mn2u8h; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
content-length: 25651
date: Sat, 28 Jan 2023 17:48:11 GMT
server: LiteSpeed
connection: Keep-Alive
static.wellsfargo.com/tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836
95.101.10.120200 OK 2.2 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1022)
Hash a14fd9149c74dc560cbb2b19a945ef73
feb2bb1497fdf3810f823e09124f310ac3dfe9e0
314c74f80c31e727c06da493e10e9dba8cc3a80f2eb07d06463c486a3ba10ffe
GET /tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 03 Dec 2020 23:04:06 GMT
Vary: Accept-Encoding
ETag: W/"5fc96ee6-15f9"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2186
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=XllIg02SBlWEKodH7Dt42g%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.4.js?utv=ut4.48.202108231941
95.101.10.120200 OK 1.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.4.js?utv=ut4.48.202108231941
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4209)
Hash 7251c21cc4e7be828526ed0d5e218cd0
87abe4f4f42842077a75808b7c7e016b179731bb
472d727e0870b9fd4b6f965c73d41d8e4d3a9739f1f966e5785139f4b7492996
GET /tracking/secure-auth/utag.4.js?utv=ut4.48.202108231941 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-16e0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1663
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=qu2sg9HO0ETp%2fmb3gcH7QA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www10.wellsfargomedia.com/auth/static/images/COB-BOB-IRT-enroll_balloons.jpg
104.110.9.46200 OK 625 kB URL HTTP/2 www10.wellsfargomedia.com/auth/static/images/COB-BOB-IRT-enroll_balloons.jpg
IP 104.110.9.46:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2400x1600, components 3\012- data
Size 625 kB (625433 bytes)
Hash a7beec55acf059f8f2e69b35fd93a671
e3c3d2cc20962e77be670f7f7e9f08d855f9feba
b8325d272c72a041414d9fb349e9d4bca5e7fc8ad66f47a719e491960afa5683
GET /auth/static/images/COB-BOB-IRT-enroll_balloons.jpg HTTP/1.1
Host: www10.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 625433
last-modified: Tue, 24 Jan 2023 19:34:25 GMT
etag: "63d032c1-98b19"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-security-policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
access-control-allow-methods: POST
allow: GET, POST, OPTIONS
accept-ranges: bytes
cache-control: max-age=10368000
expires: Sun, 28 May 2023 17:48:12 GMT
date: Sat, 28 Jan 2023 17:48:12 GMT
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/jenny/nd
95.101.10.194200 OK 18 kB URL HTTP/1.1 connect.secure.wellsfargo.com/jenny/nd
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2293)
Hash ccfd97ddcd6019d2a2c9971724098278
1e38958dca5aa26fd119308b35a92d0e9c0795bb
5d39bb22fbc6bcefa79f43566462d5df726ac978b1ea7850b5c2d20723f30812
GET /jenny/nd HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Vary: accept-encoding
Content-Encoding: gzip
Content-Type: application/javascript;charset=ISO-8859-1
Content-Length: 17936
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ADRUM_BTa=R:35|g:ac89feef-4fda-44d6-b366-bad06537b1ff; Expires=Sat, 28-Jan-2023 17:48:42 GMT; Path=/; Secure
ADRUM_BTa=R:35|g:ac89feef-4fda-44d6-b366-bad06537b1ff|n:wellsfargo-prod_43732a1d-9afc-4e95-ad69-f4ac78c780a7; Expires=Sat, 28-Jan-2023 17:48:42 GMT; Path=/; Secure
SameSite=None; Expires=Sat, 28-Jan-2023 17:48:42 GMT; Path=/; Secure
ADRUM_BT1=R:35|i:302812; Expires=Sat, 28-Jan-2023 17:48:42 GMT; Path=/; Secure
ADRUM_BT1=R:35|i:302812|e:3; Expires=Sat, 28-Jan-2023 17:48:42 GMT; Path=/; Secure
ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=Ai%2fX75flmb5k63hIE6aWCz4yUgWaYPqxojIke+WhzSE%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=DFEA041FB0D538E8CE395C9ABC5755BA~-1~YAAQvgplX1ucPsWFAQAA53N++QnGbn8exCDu6ClY3fqu/UFkvr2ZoeHerxJ2ThKlMLEtJVkqYuaBrt3hjpyXFT+vRyIa5/L/wrJUD/1Kgn+GHelAtEG/G3H2LTHnoZxKkbrSWODvY62FU89GV1B12VAsPn8e/d0AmcJ1gI5m0wssmqPdkSOilK10G5FMQz6XJ4sxH+lU2SOM8oQSpt8HAr+YI+YgfDwuaSlM7gqzeQN4uDndJZ5idBfxSFdVRAQsBUw9Doe+6Dk+8fOo4vUuKJBNFw1gLbqyfjbWvNnH0caZaUIDAM61/95/dJPgYOHggEnZfrTHrxHRSxP4z2eOvv4g3gF4RsjFWjHflyX2KMtkCyJqaah8w8fuSjIAKq1C2g==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=E0EC091C0E3B3A356C420C42D42395CF~YAAQvgplX1ycPsWFAQAA53N++RJwq+g/VHjTJKaqPsaarR2JA2j7taNmQsYATOECC2XK6f8V/SXxCwgJuGj5QlpqYPm+o4LgVLAo2zbRUfkO9ZqN7WF60dKMfFYJ/nR0UsaVpVUf/sblr+jIiEZhBTsGzDefDsDZnzgToYQnpqarXYWtRfguUfKHUN1og9mx0+2u/aRzmLyJvGmIeyRo991ie17xDHyYVuCI7xWyfRx6OX14skfoMoxMyVEsFJp9efrspTTsCjzERmy+CAsCxuHJ2Y645o5eRjaA3NTOfrdp1wEchYGh~3228742~3683394; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:11 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
95.101.10.194404 Not Found 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Expires: Sat, 28 Jan 2023 17:48:12 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: DCID=mG%2fAQDZr9NZQ6jV0yJ7OJk0Y9zAS%2fEi6BmoS6mVe4Us18RFACpgG35aPhGuNSDDT; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106
95.101.10.120200 OK 2.4 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3223)
Hash 44449282135ec65f8a30f2d0019559bc
b5345b6412524b284661df58083cf4a69137bf07
4274fe65bf4837e788240c5554ea146522b4f639497f86f0ebad1cfdff13e71b
GET /tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 22 Sep 2022 20:06:42 GMT
Vary: Accept-Encoding
ETag: W/"632cc052-1c52"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2392
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: DCID=ZWlGwTZWDK%2fYfGc18824N9ZD0snKkzu2iOXxtN%2fk6ltcHzpkiCFpWQp5w+86PX16; Domain=static.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3316
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:12 GMT
Last-Modified: Sat, 28 Jan 2023 16:52:56 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514
95.101.10.120200 OK 3.2 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1579)
Hash bda63f460bc390b7b26d7c6bf49bc292
a9e353a34855275090f1812746caed3ecaaaed10
c7d2d5ed51d288030e4f53182ad497193a669255e1c9ab0f539765d0c9189218
GET /tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 28 Oct 2020 21:48:43 GMT
Vary: Accept-Encoding
ETag: W/"5f99e73b-28df"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 3220
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=c6kJfFevjJMpd2FriLyIuw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3316
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:12 GMT
Last-Modified: Sat, 28 Jan 2023 16:52:56 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
95.101.10.120200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=UA-107148943-1 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=hT1UJYfNfVb0NmEIfcI6Qg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.js
95.101.10.120200 OK 10 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.js
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (7030)
Hash c10dd5cad23023da24e4f6e4470a9dbb
e1ef1048e66b4581b09dbff5556062af908edf05
38951c499a9bb273b9e1ff68cd7847012b22a6d55bbdac4e844e08f287972f73
GET /tracking/secure-auth/utag.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 24 Jan 2023 07:23:58 GMT
Vary: Accept-Encoding
ETag: W/"63cf878e-8485"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 10074
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=0M7HKBMZ1BmxXrvG7qkl+A%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4044
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:12 GMT
Last-Modified: Sat, 28 Jan 2023 16:40:48 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/ga_conversion_async.js
95.101.10.120200 OK 14 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/ga_conversion_async.js
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (35846)
Hash 42c817a7b5f9583b2bc70f742dc950c9
ff75711716f8605860abe551b0235f7194e4348e
881b430ac699f32b3b5234582494d1f4fc0d22be1e6ac797847d66bc5ebc250f
GET /tracking/ga/ga_conversion_async.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-8c31"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 13593
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=eYFWWvjMC++fVW9SPEx8WQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5520
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:12 GMT
Last-Modified: Sat, 28 Jan 2023 16:16:12 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
95.101.10.120200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=DC-2549153 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=uMsqcyrJKjuLI%2fIklaRx1w%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956
95.101.10.120200 OK 5.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2575)
Hash 9b6e37266171f49f824a6e39a413ff6f
142cc5dc8990b0d62bbf391cfdbd10cf4fbb595a
9e08142c6288d72a8448c65148ff9ea288c8958942bb36482f2409f504f3518b
GET /tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 04 Mar 2021 00:30:32 GMT
Vary: Accept-Encoding
ETag: W/"60402a28-50bb"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 5672
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: DCID=bjzfqomHoHqHj1O5NNBJQnnfzFiPRoh3sy764Y0CRS4+Cuw5hkSlTUNcUqbvzksS; Domain=static.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/glu.js
95.101.10.194200 OK 37 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/glu.js
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash da9da624dd834ab3d1e5a44a678284b0
4b702b75b53c39d1b95a0e91c67099e22aa91e2b
59dedff8e5a1ac1518c6385020d832790d7af3cf1dc31cc6b0b2d667cdbda594
GET /AIDO/glu.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 37002
Vary: Origin, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=zd%2fvLooIPrV1uvq8aj7f8HTuf1l6v6nhoHJE7j6GR0LRSRsYJE+amPCaRWPSJb+c; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941
95.101.10.120200 OK 3.5 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3237)
Hash 366c78f63905a07a51fcf2ca5cb938e6
7d7b1a2eb08c7972faefff64e841ba22ed0e04ee
0c587e2186f735f5ea6625edb02eb6690301eaa6c87fae4ab8f37d93610bcd99
GET /tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-2bba"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 3522
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: DCID=waiqPsFnQYOcBI%2fXhhuXtlPRRHMfEfk7lH5J0up8bCgMXNBp1Ysk3Lb%2f1QvgcDuk; Domain=static.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050
95.101.10.120200 OK 1.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1142)
Hash 8ef348be98d33d036c76772130429a0f
0ff80908b030a9d097cf1638dd903f315791c7c5
64c81f54226a9628d8944de4a31944b810f28de5db7844bfada1ee6e18c2fb8a
GET /tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-ebc"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1682
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: DCID=pB2hww32%2fLXWm7DgPrI29YniaE%2fCWMIbtEK+C0eWFZMCAM0Z8Xj0Su%2fhC7Azbujg; Domain=static.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23
95.101.10.194200 OK 541 B URL HTTP/1.1 connect.secure.wellsfargo.com/ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (541), with no line terminators
Hash fba16ad4520aab1c62f7c30da0862240
e817c052861672de4c7036c97a3e3508e6d86f8c
e9982a3303c8998e8a4358affc443e3dc9a3977f420954afe8476a6154b98c9d
GET /ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 541
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
Vary: Origin,Referer
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Origin: http://bgitopazdowntown.ddireal.vn
Access-Control-Allow-Methods: GET, POST
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd; expires=Sun, 28-Jan-2024 17:48:12 GMT; Max-Age=31536000; path=/; domain=.wellsfargo.com; secure; HttpOnly; SameSite=None
DCID=2ftTbnPAwVQTn8rHSZ6+vh6T8pCMze6KO8TsVECHCQI%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=471CFB2B00FFEAB42A91CCC06BB1FDCB~-1~YAAQvgplX12cPsWFAQAATXV++QnuT7aelme6SEB8DiyfUvkrMoMPsq3cIWlQ4kivQvve0Y47OBzq5dsNJR66Jc+MsUE2T2+SFAZ6C1MHp+Omk5KeU1fWbNoeXdkVI3JlWRjuTL+qeglKlztaLP93aUBpD+18GDMmt42gNOqFXF6PoIVvpv9eTXQ95vyXa8JBt/t5riaIy4uzR3AOoD3ALu+8V4qP8Cok+VdZZ9fnzRshAKLTHyH4j06ncBHnE5N00VOfWNrP/HDACk3xVFMatFesHHpzEmykvEZ0XPe4eRrTiU4wa0vzS/po8EEBS4ZK3eDvD/YfFViYnkTHWAmTLi+oHWGx59CjpPq8fnnXUfbGhRv0oUA3IOcfAzUnaZ1SKw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=594B02C427E83EE33CE3AF395EC02AA4~YAAQvgplX16cPsWFAQAATXV++RK/IXUJdsfsBBY6tIRU+J+HBwMpwDT2EAn2iv7OLN7mwgGt+1r5xM/dy/LWtOwH1BWPPm9tuPLhgzbYeG7M0umn3EypEL6bqk24QEm+UPX/F/5kHJTzMCZ/Ga3C8W/tHwGQUfScQrCvpJGrtS1y6Yq9U7WgnpOt8S181Ft19ttmYe4EBe/Cgu9VGc5fdOhVflUxLpun35kCaPneSA1dYQwraRkGkyoqVaIwppGTH9JAbbxur9ZxqExM5fXeZtHPKT1dLJDQrEBBLtXpmhcaAFJBAB1X~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/trx.js
95.101.10.194200 OK 54 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/trx.js
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7ddd6f304f4c0fb21302e658d050e8b9
bf46b6a6a303690dc71311352363682e837fb6de
7672b53f5d7950cc79a4733597502c1409e976b0729c4c34300ed573672c67e9
GET /AIDO/trx.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 53993
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=ZzxUem0TfHm5RtfQ2WarppVK%2f%2fDMXtVOrPeEtL0%2fdK0WkHOsEjO5STfeGIUdiTnF; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 142 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash d440dfdb1c750df6d9d8354b165b0f61
7fc609372c7288846bf34e1e424fbc8c9d3a8897
db27897282a9c24bf21eeb7cebabf3cc9feec5d7d7676498f7809e632a1a6502
GET /AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 142
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=qZqV4DLvbdbno%2fJu7rmu7nwiCFGfpAbRzwS+3C00RnIqwt1uSEQOU7Xmy2uru%2fsZ; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=839B35A0BEFD77522C8672F051850E76~-1~YAAQvgplX1+cPsWFAQAAoHV++Qmk8in1xgNkh+vcIRt2TaeZFtzi4gMAJl6erPcUElMTJJBOeR9Vq9SqwZEJ3wtUGTdfbNWCqqB3xZYKEUlNx8HHOyAlQwXzW3UezlEBcjJ1CnJujSUMappDMnTSMHI8gcg11QJFs06uetmuTBgYntKC0wwWnTZhB2PWVOobKzgOyTuj0KHvsYKbewhr0tITe+bsPRO8s4C4TDRumnwKZ7/dIbePS3ZNtr79tgHH/wSLfVum00wTCZdn+EYs2I6BqKL3Jpol2yaZCzJoszSqVAtF3bLNIJevivrWKvyPQWxTlVSBvgUpETqzC3ybabvTDMPvy2niaj/RAErZnpK2UaNqbs6Di0NE4qpxkuk8IQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=2DA311B8FCE61FC6ADA0C52940BD1C29~YAAQvgplX2CcPsWFAQAAoHV++RJjqJXY96djNQ64FyZpHeqbpTuyMINj1duBdCuvV68zz3G2QmMeIpL//A7Um0VDzL9KCKQkz6zx5mK3d+ca27R1b009bAQktuen9BCvZ/DqdBujdbEbpvph/20Fg198lFgesNDXc4Uu8iM3xkLiptZbxjRlLpWj3WWU/MnjJKwqqiDuVru3kvB9ZxWjeV15dLYsM9dc2FAgArkyMTg2RGXPGdqmKwxtoGfYJD0bIhSKWK0dUSGYZs6nZeKCUdE+0wwr5Ch7Vndk41vJLREOswfBewvT~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.7640382844861511
95.101.10.194200 OK 56 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.7640382844861511
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash df310ccbf359c8d0f2286f47cd563e0a
22da1289dbaea422fb4cb678ee4601bbdf755b8e
86a7edb4c926f45f68f622cbbd2531bdebc9d6fc0005c4931ab6e9b5648f5900
GET /AIDO/mint.js?dt=login&r=0.7640382844861511 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 55661
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=YTFWYM1Y5D%2fISRAhiMg4A6YOZYS0Az+JdsLx4fBNHQE%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2541
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2541
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2541
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2541
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 132 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 6640c11d819438d65ab88452dc11d712
78ff87493789f855231f9ad1f95c088aa3c6774c
61a097bc2513efb34dee32ba60be8df34a5e2d3f9f833065c47fe18b89907662
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 132
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=VmsNBLF4KPas6qn5aBt52sMDJb7gGg3ztBJQBo4GppD83g2MDaTTqZ1beeqyneWt; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=1CB6B79BCDBD2673CE5CE1F962FFEB7A~-1~YAAQvgplX2GcPsWFAQAAQHZ++QlN7sp58lPVurQcQ24nRpCN3PZBXh6OL1hs618xER7pfMuglA+bZRmspmDF5RXWdJ3W0WJlqupPJ7x4RIT0MxOpy0WtKyzMi82Ba/WJxnUoo6Zph4c4SJ/ZAvqz+UxwcZN05Su7MaVCLLEienvxYxBilH29+OJ1w+Tn66tcefXyfXJ2fnIrsM9dxLjQ1GfXKWC3QzwttORXF1Muj3mzAkKJsVC1FMRsQzCPWNF0DlEGv7YJfj9yt1u5SEDssJdj168Tk+dJ2l4fX3+0arV+s//YLHJ9MZ4JgHIF8eJ7/N5u9ycuxSsmBER3ddD/PQIsayivKmNb8MtZKdYfNqI61hhtiDME6PIthrWGH7VV4w==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=D3E5969CCBEED3E89655861FCC9BCB59~YAAQvgplX2KcPsWFAQAAQHZ++RKGgMH0j4YWPTKUg2pjBh23dfjgDsWkE3prsVDjGHkeE7utlkL4oCJr9kkM0BE2+Y9XxjZnDDEhpAYs1XzPJytKtJdSBQy23Ul36JI+NnbqdlvPOAgrOI6vvadJf0JyPXM2Czohv/FU9qAYeXFesAao31ym0GXqohAN65BDVd2UefNaDNsf+YA+GRHvOaO9BkVe1oW8pJJ4FKalMzwSaKcCRGccBeoDvyxakMcvKrHWKMQLXWb4Owo5EomAnihdNPYJ9hFPdFJm0Sl9wPk/Kx34MIZ7~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 141 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 298116ef31918c640958e07df69b9220
01b2572bf26573639fcee3b305579688b293f285
a830d0edb2a0425d62b04c2f2833ad08a47735bc655cab5b29b27d3b522639fb
GET /AIDO/vyHb?d=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&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 141
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=bWP1vMNHkuxJ9ZiWjqgUkZzBmKfpSn0SlRTcOkYkg3k%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=E0A679CCA650568D6FF67E7E2A93B29B~-1~YAAQvgplX2OcPsWFAQAAQnZ++Qnhli8MX6MWaaGEQ71ZORBGrw9bnF4kXVmoQMDzTEad8OF1rx5z0G9Vb5t8VICN5tGwKCEfCszctYr+Iq0nVYzOfRoOyP1onn6aYADhel8mBJaLN+mDFBN9orgiuQREBHigzSRLlZArtRzztFgBQ3U0U7JqZr8UhtJaRl6l1T8JWJje5WdS37MnKZnFMDzvPQS5PzUFJ3Bkoa2AiexrH0D52zF8sL74+fkQO2hf7oCteYzbBtam2difA5D35QlwoY0VUKSAjtiF+6NRJM+Q3T1IUP88k/5DZkHxFREX5FiVHkoCxhHt2iFla4bsvIBeqJF1rSwa6OeOH9M8GQCISd1nHDweEIkeR3qrkFYkNw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=38A7CFC0EAEFC126FCBDC969C9B92958~YAAQvgplX2ScPsWFAQAAQnZ++RJHaBtFyFb2B3MJ9bgj665oLoR68WaPiQxUT7ISuemUSC758RMKb2NbfLkAx+0Ue8Bw8IucYkOLEjMs4RVxzneglyf1sEf3dvMlHGFw5YhoLd3gtu2JU/Gl1nDHYfZS9AVeqWnouNDdeVKo4NMOrfmJSsZ1mYIIpM0jRS9E0l6tG7InLWGsOU88lQmHx2rt3g4G4OUfVehtzI3OChmMll8VosYKf6KpivvuEyH5ArwGr4Uh4StZE40+xhldnIlnxbjbUKp1IHPX2FYS38IvpWd4DeUw~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d0fab44-0562-44c8-b7c7-fb069fb851d7.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d0fab44-0562-44c8-b7c7-fb069fb851d7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1950b80f136ad55bab17c6ad2ba8d2c
80f878475f3801194f869686b3364d35f99836f0
39724d1df38aa7068d9f498271027e500af00b4ce3cd3df41e09c4fa4fd13320
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d0fab44-0562-44c8-b7c7-fb069fb851d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5933
x-amzn-requestid: 107db189-1d15-4d9a-903f-a6a529d841c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwEcmoAMFiMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-1cf1e1e975afcfc01eba60bf;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Aaa0eZwfxkAoeIx6JSoi8k0RLYSAUW4SgFUyR8dgoC70CEm5g9OOtA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:26 GMT
age: 71326
etag: "80f878475f3801194f869686b3364d35f99836f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 71486
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2881cea3ae511d3dfd2f6b7cd598a4e
105d8d675aaafce5602e4015aee2d1659553d1b1
0993ef71c2af9e07ed09e0e2ba40a4d9fdd01444154c2f39f8fc48a4dfef1730
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10863
x-amzn-requestid: db873091-be76-4276-aa3e-f9bd44051508
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAMbHCMoAMFsYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4471c-57f14d6a3ebcc8a1788bae80;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 00zN6NcdSHaq-4mWQeizXw9SDgUZJOFnB_6dTo6skjlytfBuz8ud3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 71450
etag: "105d8d675aaafce5602e4015aee2d1659553d1b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 18:36:01 GMT
age: 83531
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 70332
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ed1a0bd725b2078b4cfe4ed83877901
62493ca03be9870aac2341e033611a6d56bd322a
706e84bc63fd98acaeb72789239af3210ae6e3910e6589d92a25899dc9059dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12397
x-amzn-requestid: e8436997-696d-483a-b03a-a84e7ca614ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5HbzoAMFXsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-1c2ccd0a187d0a3e2f6a59cc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lmLHc8fKQYUpq9B-GyOQ0FKzhxi0ToTEPA7cu6JnQftgDFDNV8USvw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
age: 71495
etag: "62493ca03be9870aac2341e033611a6d56bd322a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 3fb642baca4beafb486dba7e8837e68c
9ebcecc9fb7bf6a20ca549c9b28814d921f46480
05413f45f5993fb5a248861440bb0ef62b51aabeb798c6bc82a33f3e8659b866
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=qWwtXYHnYzDvkSpSpKb9I8FNl3fBejmEUQJQ6u6lZ7Py4pD%2fu84KRMlokVrsAvL0; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=3DF37626E4249A4860D0916110068371~-1~YAAQvgplX2WcPsWFAQAAj3Z++QkOxDf590EDQZeEn43ykfKQndi1dpOikXxNloTW5b3VR8pwm7RjT327Az2ODfZB0PY8531129jeW39xARsDss8261rZRx9pm9qY61Ne+nwcuntPvq2sxq+XFt9uQ6eheWlLwGssQgHKr6fqu8SZmWo0GWKyYEFtqB5kDBAWiHwW/Dw5Zec8hC8fXnniuqBl7grS/V8VsuADYI8AOua9YO0YuwWTj4oeGMUas07xOYI9h6MvU+F3guxunyGitbfOaclruZrUJ3aVYMB0TTuL9Ahh83LNmGygUujkTBs/sYswVm/B1YrI1ecPJGNoAs1AaBUbluEX7ryUVAU9NGwgDPioeNQqpr4RDr0xNFcxyA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=6BB074062CC77B56AAB37B21CD84539F~YAAQvgplX2acPsWFAQAAj3Z++RK6Q+yaAXw3m7AZGZSMoS8VhSlrSiVh+pqXJWC9Ie1nSrGqvFZP8AoZEI3q9zYnI7meGgd5TwuoK6PinEqKtHGwCsohlpJiHh3iaNIilfz+uZ1IKvbxuZFLWdKWGOwN1zJRFzWLj2vuDabcYlp2uIDMze6+IolpKwrVjVLttRjj+078ybYKYL6z8LxL8WLiDAr7o4Xev7C119/XhSulMKYO51AOLDQOV8xl3OxXceldOiqdUF7tR/QlGLi2g0pBbV0TdwFVDjyaW05TbO+mImtuiVzP~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 9016e364876d628a986536df14539739
384ee97192494d2adc3f12e5fe906f772da9d89d
db341d5481f4f4821d615925d8832d4670c0be64ec82a973bbbb692b8ae1b97f
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=pczhO3mYZil7uAnS9CMn%2fLZTxP7g8TjosW%2fhVwZ8Lpw%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=138ED16AB856AFEEBC844AA622DE5D18~-1~YAAQvgplX2ecPsWFAQAAmXZ++QnLnuYC00rFPcpzUBqjpeV52DQe5vfLr//2bB/62thaPz/M7u8Crx7PyfZWk3TwA0OchfPnidhzALDoRj/gjsLqXn7Vii5/lHY3VL1YkjSiQQLB6+jfJetp/KRH9XOBfbO4PVYw3Jfj2jX+UWl17nGjUbPYONNlEiSkve1iIzDEoW9dmBQWvCEuBjirwPNl/ZqjsrcfmqJxgl6rNsADQDygybV7E2nlf18cGhRFUaG6YyLqWAqxQ6sG8Dx9hHGZdYBNcAaPle6BSADlHA0KR1DcmOruCi+lPD8Bad51ejMAcHOnz7mDuEwmK3WMxkt5Yn8JXDkpiaOvE+oO6gqo0Yx9F/GjOlEHx48ythsMXg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=D19CA1E6414B6D914972DEE6518B3FCE~YAAQvgplX2icPsWFAQAAmXZ++RJPbTWrCLnZ+6IpzDt2q0tjXiZd0y+/eKAROBaT+O0oL7Z8cbHpQKiu1EGqBO2sPslxMbC629QbnwDzYgNciRTfITfvI3ChKUigw/c+qn5OKvjfTRBvAT+bgzKL/BkjNvfcK43iFX1znLSh/wU6kSnhmBLKxuyi/MuX7+gI5TTeFNcOMegS5+BO/jh4Kt6OkKcLRQF6jiROs8SRfcZk4F3mw8XH9d3juvua/zM5+sPLgMsIxE7f0QUNqS7Iotdlg6W3e6TiKEBkAq0F7ch9S0L99HBR~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/try.js
95.101.10.194200 OK 39 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/try.js
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1c3f24cee1beb979461853c3615f8795
45e4a599ba26e93b2b13992a83ef4be7d6845655
261ece6fad5c3065bcda4bd1bd32391e9b8374e2a7899bbd8af362c23546eba6
GET /AIDO/try.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 39305
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=6Gf7WFQHvx3ahCkEK7R56dPL2wytlzEeFs4pz4UlqV0%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/PIDO/pic.js?r=0.8426445611056853
95.101.10.194200 OK 50 kB URL HTTP/1.1 connect.secure.wellsfargo.com/PIDO/pic.js?r=0.8426445611056853
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 11462e756729aee13a9244d723765fa2
311bc6961faa0e376fa90a98ff93bb6cbdcfae52
ff51dac48ec048c78d438e12b230beb78bc8e1a708b4a818a4b6628d8a70e4a8
GET /PIDO/pic.js?r=0.8426445611056853 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 50016
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=MVlAHwnDuCb8Jzp1AnTraCh7vdFxfN7YWY+yI241xfWuTTz4UFsYKmqKdJ5vKCXU; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 709a15ebc1d091c85bb23e4c8a3591b0
9379a41b5ac7c8a18e0f5c92041d0be02112e5ee
20b90132f5e2d51fe8edeaff395c1f75127775d81cf65b33a863eb2ed95edf51
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=m%2fdUV5UDvTYo5YBAnhcwowB5zwVuoNwOUB75ZwD7qL8%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=44A9816DC074A607842EB562A6B5B6AF~-1~YAAQvgplX2mcPsWFAQAAQnd++QkhKSwvSgAqDXlIJREf1HHjseiWXE8Pnom+Dc6EmjzuKbmIf7XN4i+CKW0kZuCYAq9gBj2v8Ac43bj7bVF3uIlfxnawDR6kRkCHmvRxWib6a9XNldk0K6Mx/YzHTaDXSehTGRgHUV8yjudY3hJNR9ZqLnQEsaEc3JjvjIe8xmuOAjCWdXFCTtAN4XFB0B2Fm8WGXwCmp2osie+aZUQik+7RCkICmYqfZFyqSX225o3dliPWNDQ5MEwVKThqCv40XqVFt1SdlfMaf/BnqOmJKid8EQRy7r3ziA278pIb2GW+r7dK6rxqcv7P0VNUurNpgnahkqyh6S3nK+HbDsod7k8Y9qXxe7MfovuInaj1xg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:12 GMT; Max-Age=31536000; Secure
bm_sz=B266CD08F87FC37F362D70EDDB2939A7~YAAQvgplX2qcPsWFAQAAQnd++RLrGQ0GCa7lNaQv2R6U11oBzugMJUryjk2Ns/CYLTgotlfZ5t2eVy/egENpuSO19C2iuteg7w5EgyFvrWbi4u2eODQrkk1IxrRoLFe3Suq9eXN7gKgExVi5WCJE22KkIovjxBQg+l8CPdREHWoncTQpCXxhwyErmNC4u9OKTGgPbhvr27/ws5ZSj39kME2a8h/Fz6eQuwTXm8aeRPD82b19NPf+x75y7UUfHVAKwbHNO9PpqV1SmCL4bKIEC72hicUShhliq6ZBfStxwwYg7mj6sgHv~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t=
95.101.10.120200 OK 43 B URL HTTP/1.1 static.wellsfargo.com/tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t=
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t= HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Last-Modified: Thu, 16 Jan 2020 21:55:22 GMT
ETag: "5e20dbca-2b"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
$host: wellsfargo.com
Cache-Control: max-age=3600
Accept-Ranges: bytes
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=WVXXDPjTxBbPpJ2XRfdKrA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 8ad709040df77d1b3925d20c932f68d0
d9683a5555006e1b8e5f80cef809be86fb22a3b0
bd320a1a5b4aa6e2026cb92ddd25306bbb52efcb74837ad3e9958fec2643a5c5
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=sX9NHMytsREmgY3BPgxtRDTePeIpBnhh2nT0BvO86uk%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=EF5340DF394346A45C51FD96144F2E77~-1~YAAQvgplX2ucPsWFAQAAkHd++QnasLwZWbmLUrQrFSMEFXOrnjtthV4cFJGzd4Fd9ptqcJFa28xDe4tE88SZmDwp9Qq/Yx8DAmBSIXSvIx+jVaZqcu/q6NXEAdH/ufyLuvhdfgc160aIb6qtpvEj2frLOt9yoI49DZIWpxfC9blx4PABWexjp710rgVEXXe2Uh25eg23ABKPsoX2MN/VvuHtYy1bxJyRcGYYaELi9IP3yAK2iGWNY0yQKs2EWIGGSfj6IuRe+Aj2AaCvwJbEiLyrTy6n4J/go8Xa4hkhHF8dGP8BS0ttrYcUxUwBvbbKZf1scG6Aj8tm5o4JTQ/fDKK7NqHcZAZLU04/ndVsOEKTlYXjGQdOVdesBn+rRu5LVA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=55D3775D63F0CF70FBC42E06A8F6D8C4~YAAQvgplX2ycPsWFAQAAkHd++RIkDDDBktCOEnRa5UIBsAJgtCSw39s7DGDOpH43CUVAcXrLyhxwK6gq0WmQNonCsXxvKSXMTdFXdeNoJZ8xRMwLiwELQqybgH7n4qt87cANcifNDZb7vaBhgAuDCXfMfFFuV4MTLm3rJYfwXGZIEHEhkSd+3pGSQJ+aey5ImVNeWsQJ2vaCJ+nfQp7coEbI1bgLJgANt3sf57zMrQO79punpiGdp9OQt+ivbT0X9TK3B+M9DrNqrsVmPCKZUih2fKga5ED4FtTzXVEvz/R5OLfyYwTm~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMSUyQyUyMmNudW0lMjIlM0E5JTJDJTIydHMlMjIlM0ExNjU2MzI5NjUyNDM0JTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E4OTg1OTclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 92d8957f603ef5f37b10629144403d1f
04a23040c0d713c3e23fe9d84b7c151d81ebe89b
ef4215a4282e51c566934c7b8f4a910da16a539c29292d69e536ff06ddbddde9
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=tKKPSHjL7EHyuWpMaT+i+HucO9t+a%2fvKUC55lNqfxGqkVPNfSFEwoOKVH1wrq8ut; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
_abck=F85C64F7E1DDACE089F8FD49DF338D38~-1~YAAQvgplX22cPsWFAQAA+nd++QldKgMhD3xPrB+bjSb+Bd2nE9cP1P6KMKjUiaZdNoh4QfVSFx2g/ZK1MG1s49rJ7/fIDX/DKLj9pv2YEpVBfbnQNhskg7VLHZkKfCzcDpknEWMtxiIbB5Zs0LEVSKxdSgx/5odByWoXsaYHz6lu/AhEXx1KaJGiyVkOuQSehQWO7GthgSbCxcliNDCUCtyl9uSNv9b83j8rFPcM+gVG8PJKum9Xtmh8uyfUYf+CA9ecNe0Rjf3jAm5FhsZ8pbrqY2VM1p63ebWvxLNLbSX1mElVWgaDUvQ7kcYDZZDVh19Sj7U1KgTWPbfvgVeJhf9lTaztW/I9cnogxlfmUJdtc8wvLlZieb3yTk2GOd/vWA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=CD886EA52F3497C5F4DA9B546F461E20~YAAQvgplX26cPsWFAQAA+nd++RKrAyd36yWciDtowzz0+r+FmJrukejP189jrd9FI7jlKvYrVwRR14U+5m4F1RXQReECr+4QjoKFTRwRbXHDh9T9vI0VIoJSJCQwEpEle9dc9ETM65IAfNMhxvQwlh/CBMRo0PPwv2frxBRk3Miwg74WbPNXU1K++TkIDUniPd108q+n3oazl8s/J9COIaxrKGtkPg382hTLYRWYQUz879bnbXk2VZDEDZelMAzP8E27Rj4yiHzFdcTA9eH8C92TxX8+C6KoyoCedA22EaIVhOPDoKoD~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2
96.6.19.156200 OK 23 kB URL HTTP/2 www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2
IP 96.6.19.156:0
File type Web Open Font Format (Version 2), TrueType, length 22600, version 1.13107\012- data
Hash 83df8749c013f13019fa8e0912041759
2bbffcf012a59e47661c0a37edda0fc772992ae7
ab9d8c97b35ed86b6224aca911aa304a0d7dbcbd28e00a4c6585b96e28ed30ba
GET /wfui/css/fonts/wellsfargosans-sbd.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: KONICHIWA/2.0
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5848-582d133e56280"
accept-ranges: bytes
content-length: 22600
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-type: font/woff2
cache-control: max-age=31536000
expires: Sun, 28 Jan 2024 17:48:13 GMT
date: Sat, 28 Jan 2023 17:48:13 GMT
X-Firefox-Spdy: h2
www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2
96.6.19.156200 OK 22 kB URL HTTP/2 www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2
IP 96.6.19.156:0
File type Web Open Font Format (Version 2), TrueType, length 22424, version 1.13107\012- data
Hash 0a1639ebe9fab396657a62aa5233c832
9b58164729ad918dd7255e4856f9da7f3a90bfde
631f3b6267a831a8d67c45e480b5d5a2601f10ff8708bcf3a45a41b377a129cc
GET /wfui/css/fonts/wellsfargosans-rg.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: KONICHIWA/2.0
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5798-582d133e56280"
accept-ranges: bytes
content-length: 22424
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-type: font/woff2
cache-control: max-age=31536000
expires: Sun, 28 Jan 2024 17:48:13 GMT
date: Sat, 28 Jan 2023 17:48:13 GMT
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 939a7800b78e10fa645a54a5ccab0b45
d341561d6b1c49fe39fdbb2e249baa36139c7f17
43091c732a9e1f1b0e59c674512e6b66265eec2beff0e764396f1e08e1941eec
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=RIsE786xDYB36bOjcbfiLG8RMGAfMR1LWUh%2fs5Rs65Rm7cLUcjRazSnrlimtl5EN; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=8CACCB5D767E6CFFAE6C5170EB91009A~-1~YAAQvgplX2+cPsWFAQAADXh++QkBZM92o5ck0UKAQoMgTMszru5FwL+34EEQXRSwATZClcHJNf7X6Sz99M2hhfmlTIY2JBb9Lt3U18JJXAlueBUqY5ucRMLsa4phCcSPyXwwVoXcN7Eie20Vh4Xs3L6+6VaZQTHB2QaqnWVZRh+6ksGeAB4i860iJHormk8KXaTONg0FAklsUl55jy+In/drvF873Za8NQJ9T07u++pkt51U5m8aHjSUYKAzLZJU5IR9LhaIzR4rOrsvVXa6kZjvKP3gSBrE3K961OZ875R4q9vWaw5F7qhFivGCBm0FjMAcTosVYNX/QGqshwFhmoNiWIOK6Nc6RrObr/K0mPiUTisr35+tuAIo3vC6S6ry2A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=8AD9E2E17D50CA134F6F7A5C56B09EC0~YAAQvgplX3CcPsWFAQAADXh++RIkNFHKCBWe5ASeGWKFIL6funm2XdaDX6oe2BHIh98M9AVWlrfqVKk1DwcsSdCh35Z74kg2/LUUjDs/cLDHAIZXLJLE+qti1VYcfflMBDtOLDZ+gk6gDsf7kR80HC8/6YKIvV/VUOKUGE7Xel1nC0RPe0YefvnfgRM+Zn9pUNOZDZDjw+Cn9xFiiOTWvjaq5rygstIekI0iuzeEesFA8X4e8RbecaCIGJB3zUPsbhTQAPAYMfi3Nv6JKIe01FjVFMWvN5p2+ieiu9XPtNrAjoc8YODv~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 4c084420e659f4976b726b2eb521b529
5eca194e2f0fde85c8a6c26a93cbb8db1f8b4468
7da443f39799d3ff07e43890054b7888b5f3c2d91b68b9e23a4cc4fa5e037701
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=Jqk1GOz+D7iTCUwJz7cCAaZs57yfCjwpJzqselHLjxs%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
_abck=0561C00820BDE900B0DE905081911F72~-1~YAAQvgplX3GcPsWFAQAAJXh++QnILgROkfSrJb4YYdKMQtEfsU3GhY1/4To9V7y9p/xGlFmW+GhgGC7oXMpdq5yA4tAnSeUS5FXabc20FdJnZqI+KGy4Rg+VFgF1v2iH+SBol15z9vGgx2GmXwde+2cVfySjqyLVixmR5yBxrzcGUxqzsYAmiSthTbCPhcaE8d8pgdmOobKEdFcktAtlUvbCwVrMG/svgIZnUjrpOKmtz1zc1RGIuhITwIDoEMiujphRt8l4Ef+uYdRO6Iq5Y5ZZDiEsAyuclZz3xNhZ6ahRJxBfoxVFczd1rTCKwLquXf8ILqFnVx4K5HEXEB1/6U+1/VNlSdMHj6NPD1UQD0fHRoAGXpAf4QUNwlRHX2RVdQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=DCD143C6462237E53CA2821BFC483115~YAAQvgplX3KcPsWFAQAAJXh++RKsTp3Hb5id7txO3UcgGvKbNBXV1+7bz7EaMAFDEigs1AGgB2icVksYnTUWgnI8PVJFOSDCEL6RBww8VgP/EO5Jg5gJbmrvs12WlIcViWWXse9iBAjc2wWWEnVZTdOPMiTKQrl4nbHX26TsrEjhN5n6P+SHeD2GPxdeMlDFm6EQk55svoIJu3JEzgVaesJi9pdLW1vWSZbIBJU0dJs7Ql5lug/lAx2g72a6TlEZfRHvh0B5mneXv9F15tQ2+Zb/Zzmcofhb9QWwz1dbsvaz80/ZjPuX~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0ExMCUyQyUyMnRzJTIyJTNBMTY1NjMyOTY1NTg3NyUyQyUyMnQlMjIlM0ElN0IlMjJ0JTIyJTNBJTIybG9naW4lMjIlN0QlMkMlMjJyYW5kJTIyJTNBMzM2Mjk2JTdEJTdEJTVE&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash c9fd96040db248c257fcf72f35154c50
4017e7309e5d6c02aab4f5b9ceaafc4ffcad6445
18abcbfd674a00d68a13975ada85e901f4ee842ad94c06eef35ef13e071e19c8
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=Ms2YYmusPTP1FhguJeC5Tg0lpFsFnH6%2fWUQWBQ9mZHc%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
_abck=FF0C4D8F9CBB91127E22D1CCFDD8FAC5~-1~YAAQvgplX3OcPsWFAQAAMHh++QkXKXGoDA1StWprpLaI8QnIfR+aajdqXbyoWEadxDEoZFH0ewU8IYOjpl+ja93+JWKSZo8Q0Yu6GLHH6vIYEeQtpsCCqJ3kwFikqa60BsLin4ewQKPsM7xBREhM66ug90j368IVXoryrcQWr1KvPEvmbydjM+MmmPr3v8Qi5gzcFLlcnI97qtsFYpDxhHP6y3jy4VcqkLRWAfovSyZzaKMjTbvHO/vRmKq9je828/W77neyOSk36/bzryCHsQHXZYJF4JS9AQC3cGMJwGqYgGXLO/zBniNXHKfbQMbkFwttc6n197ynMaUWtd8zj1pTjJ7ja6oVuSAZuhAzjUNwbbxEg3t3sTXqrjZXHtqDBg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=E3C2D7A9D994507A9EDAAEE609606190~YAAQvgplX3ScPsWFAQAAMHh++RJLkqRm4oGfAzQOYaIgzE4/zMggx4fj6hGGeZLgTEwy0kZlu6mApSCwtQj6DnVp6ZCTVSfp9LLlCC19g97KD5Odp/w4qwyFJHvPAAhIbAwJKjv/N4WpUwUsC9YSr/9mTUXJm6AXXZAkEGgU4nBek3gfwSmBS6Ny0zTbcPoVVFwcuK1XRT/q+SIormIbUkfIKfhC02J6sv1NNPkqcedqWM5zo8vyJDRM3iZADDgTUZIFm0CYyJ62wctOZfvM6FMrJnWK157JXg9Oz40cVfdnf3SBdY6S~4468787~3359545; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/cont.png
116.118.50.194200 OK 2.0 kB URL HTTP/1.1 bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/cont.png
IP 116.118.50.194:0
ASN #63760 AZDIGI Corporation
File type PNG image data, 176 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 62d9f5990cc1a950f03ed3c7a21f79ff
4634fd8fa2c7e4823005501f39b303f61da3a43a
076a8d09be89fb75e1c695adbe8bb0d3a4981656907a4ff02b1cbe4fb3254709
GET /wp-content/themes/twentytwentythree/styles/wells/cont.png HTTP/1.1
Host: bgitopazdowntown.ddireal.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b&session=e6452b6fe333d315c3fec65a344d3b1be6452b6fe333d315c3fec65a344d3b1b
Cookie: PHPSESSID=fpbia4qh5itah03u09v7mn2u8h
HTTP/1.1 200 OK
cache-control: public, max-age=604800
expires: Sat, 04 Feb 2023 17:48:13 GMT
etag: "7c2-63650252-16165b;;;"
last-modified: Fri, 04 Nov 2022 12:15:14 GMT
content-type: image/png
content-length: 1986
accept-ranges: bytes
date: Sat, 28 Jan 2023 17:48:13 GMT
server: LiteSpeed
connection: Keep-Alive
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 49067ea713257eab0f7e76e55742f4d9
e1ddc1a1316127b514faab8c3cbd2853e16d6139
f90598e6dd9e9b38ce71662badd8516ee1f6633e8b472e10824e60f441594b17
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=LjbyDCN86pSkkgxd6G4r2iPjfseXxKF4GC%2fzphebeTRvbJD9CYQVouPI8TgmiL3G; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
_abck=74856966DB1D4B83CF3C7E14BA9E8877~-1~YAAQvgplX3WcPsWFAQAAknh++Qn8L1xsIP3gilXxHUXGP2l/SeAy0+d1pg66Y2G/6tYMO9wj0xq/vn/cCKnQ0ddlOysPfAEPIAkUMFnJxDTvnvaoL0JWdi8Oz1bgG/jiiLKK1D6FhESeyAEAn70BKMEv26GvHurWpeJWripQ2KwVy/lbqVK7Ta0TiurSB15xEE/UPbSLtn6M72sB7WJr+R+MTVachYzjpO6LmlYMov8gYjo2fH4X9aqCQU2Bkb9wBKOMOPiVWM0Af12KTbeoQ/qybGjiHuhGcLwSaDMwfhDjG1OS5sSjY8yEaF9dTAvtqk0H0wmWL7H+056xeT2hzbSkc9nY0/rG27AZpRqtMIj+GRJ60paADOOOsFZ5y4GnsQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=52FB0973290874D472F752AB36FF0795~YAAQvgplX3acPsWFAQAAknh++RLAoIuz+Y5ufKx1GfpEbH86F7TpXgY2uUAvCXMEPr1ahPmFtHoeA6HXgd09nACjSeNnR/r4nDplbo8+RGShLZ1qJLy1KNwbbg7ibz6B/xi1zbAxqSk+aewJuaOivbGUpRxuvVSQ4XtT+xrGZM1QBWpMdenT3pbPiJZAVO6ruguVIgClJZd2xK2yjNmlWbmRGURzH/Eu5F4KMJnA75SNnXG8suvi9kvBlEr2nnvDRjk+JLZdnzAo/gkPus91HzwyYESfSohAgvND7oiTqZOdE136q7re~4468787~3359545; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js
95.101.10.194200 OK 6.5 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (20468), with no line terminators
Hash 4c244efedde17e2a9520826d0d2a0b65
bd4bfcb3fa80a4aaf6f035d27c62797b8eadc701
3b0c98e493e96fb81cf6d1ad7bd75c5b397c711506d712e894b52737026955d8
GET /auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 6493
Last-Modified: Wed, 08 Jun 2022 01:32:25 GMT
Vary: Accept-Encoding
ETag: "629ffc29-195d"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=CJfI5fXyT3brabyPEgTm7y5ZkK0q8gdP4C6hNeYKnTgHDfBG9fPPeUaYjmNtZDCw; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash d0c9e6104eadc2be53084b1a2d2f7484
c513d8c456c3cca5bede070c7c71d93f632ce703
28c7a1b0b0cfc11cbada099c30a82676e1ccad9b3120b17efdd3d426b4a9ce94
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=0pv%2fbLrPywtseaTYbY6Id4uQkkXMSA3li0hZK2Xr9FePD3Ep9WJQh7tQ+1ZtjnNR; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
_abck=A2C3A0431B1A52B77BD49C468C976C55~-1~YAAQvgplX3ecPsWFAQAA+Xh++QkRK1HAtK43SzApWKwqzKrpLoLcdPl72hw7PtgV4t6ocaj5O5qmkQYKdV1iPfCP9jcX6yA7KOWpSrDDvpPx+68QpZrpGbp4GH9hFZsT/wxnUZ/LNx62lYlsP/RJJDUMwequryKG1ZLFFQdq08gauCCQpEyJIlYKJkTQg0qDurt1gcWI3BUkPI/LtENkIaPMadidyGn7OUnncbJRQ02Ae4MOrEtjhleyLrPv3GC8ysEAMtnHhC1/+nz93iSO3QaX2Wecin4NBQbMh1slsowfL/OSCui73EsnVKRcBKb/oFbCNEQr5doqvlQn89hG52wBXDr2ZIAnb9y1+KVHbPgKgUB+2NeyDexVw+QiHeCypw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=F23F36FDF25A9BB10D72DE25EF24E984~YAAQvgplX3icPsWFAQAA+Xh++RLK4i3JhFp0UM/Od+xV6g3NA9pPL5AIWzDTfDuyMT6oFUzFvcdVRiIw90vlU+yBiaip9jBJsNQQEXO/QSIYEnFBH9ll/H49YHCBGblIOzELw/5r04L4nol8SkbZPPQLD0dfLhhbps+Lxj32S6rbMtNiMnNOhpq2/HX8WCfjvpKWO1gqQbHIlWnA4WDbztXKYdzrjfC27CkM+6fI3D4B+A9ZBRmNZEaa+eV7udW6YUWbRiVJ+/iyk0LdkKl58dGUPeW115gXRPyl4QVmAbndWiJ2dHrK~4468787~3359545; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
95.101.10.194404 Not Found 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Expires: Sat, 28 Jan 2023 17:48:13 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: DCID=uIS+3RGBRL8nXDSNRTSNY4GS17jEoJy%2fld40aAVvAKU%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js
95.101.10.194200 OK 206 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 206 kB (206303 bytes)
Hash 600f986b91e4a976122d1b164aecee60
72522b8542cda1433d49ac33ebfba460d59f5f51
94e58269887c86c0d785e045db7bf4e87aaa4f9dfa4c72f8fb9efc38e06e9aea
GET /auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 206303
Last-Modified: Wed, 08 Jun 2022 01:32:21 GMT
Vary: Accept-Encoding
ETag: "629ffc25-325df"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=NHspEzmNKi2Zwzzm%2fG43prE8zqONM+ynl+Oh1sDFGOg%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash f5fba74b923f85e25a1ea3f6a4fc49f5
fe6e99fad946990ba139029a763f9f37a16cd65d
91e4378e57724619356caa4ca5a9af2c2c668b503f7b2113b1a8eaee7254db2a
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0E4JTJDJTIydHMlMjIlM0ExNjU2MzI5NTA3NTAxJTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E5MzYxNCU3RCU3RCU1RA%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=8CUc%2fQs77b1Bq4fo4F8JUxjfjky8MEb8YKXbPH9kBbI%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:12 GMT;Httponly; Secure
_abck=457AD4B396EF38AAE5F820B5C3EBE4F7~-1~YAAQvgplX3mcPsWFAQAAzHl++QlolehN93uNnPrLD7UrVZL0tyfKVyEx6CRegEUmYCm+5CRKg4NJiHQmNrDd0zwR3eW0xc67d6Nm0Kf9QjV7nruxIabbn2o45TwDQNCHOzROkoct7CvKOgjup7nOF5B2yzyvSiAXztkm4tMjIFL9WO7NSeP8wB6oxI/4jBvK1+K0uGPVg/n/7H64IgP90N39Yz82bvazkzDRTmRA9mLJSY8MiSThI6X6EwfICs67m1m1tl/OCE7tr9j0Voq63ocHcPrD71gqTTTbRQb+xVpaE6pIqPQdaCYQ00cba0jm/NwEPe6ntX46tg1Cc3F5bLSjZPoYeljgcRNMXUHVnuFFbngR+RHprtFhWGoNtD3+UA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=A4F7C4989E6187CBABED4D34718FD9BE~YAAQvgplX3qcPsWFAQAAzHl++RKBYY6izEqcfaomGaz6TURI8DLrYJPCFv+My3EvFUaIzU/jCyHWOxkR8sEzjOPDHUHPtYfUb2Dh957dx4l1RWJRkRZlL8yyjkeXG/OaCr2wme/Y2ClfT05KHnMmmFxd2zvGuZNnh2lgcxWWaqXNuuDa4I6CXZoFafyRtpvgwzgfk9plpshnoJ4lyEP23uyNTmBXEzs80shruzHhrR5Czb4W2Oe9Slj1xFUoja+R655Dc9xLr5sld6j+9nd61ObDXga2kvpk4dLfIb6H5J2lGepmR6Gn~4405553~4272946; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:12 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.194200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 5a88f00e656e05a9d289a05506845a88
9bec04b14b0f2d7fec608f60d4fc43dbbd3aacd1
fe5a6f8b61d3b055e92d347163a4715675351eaa6393364341e823d66406b861
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=jwBMX5eXUdbU8+S4NTeCd%2fEuLF4uMrAbTzqGg8W7Tpk%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:13 GMT;Httponly; Secure
_abck=D263DA2369FF0E04FAE46A1273166191~-1~YAAQvgplX3ucPsWFAQAAKXp++QkGNhzSDGWf7Exhnv1DpDOEGC1ePUmpV3ZkQMGLvoozJ55YcqckLNgh8WScobORVQeTEitXxj4ExNt84BHLassREmSdWZ/9AHdYpn3LCp86HL0GpPAMtmHKE/PnUXsjE4vazIaFlS5lwvHi/7RVGxDh8oA/Z1J4g0QPbSAiSeTwo/pXnpv4j2tLahl+UBFLLYwOw8ImvG6EpO1Va/2Eq+pxoO7M/3E043XKC68rdTmea1n4N+IjKjP1uDH+VwUJYjbumBV85amBTki52qioj1idci7DPpghcbNS/ncyJxnmS8dqgPSt4ggBHmbH6MTiWZO41bG931J7T4mk51zNHN9JzUMTO6z8kzL9ha+/JQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:13 GMT; Max-Age=31536000; Secure
bm_sz=7DB3CA4BCD19971DC2E4DDEFDB0BBD46~YAAQvgplX3ycPsWFAQAAKXp++RJS6uebCqrF6HoJDbzNqdva1xE/FsezTao8QC5VeN1INWKRfi/OpXTcqArGTtrkw0Q3Xk05xhj7dC3nHuaFJy+3jytACCQRIGca5Bvm9mjweAMtS0TVgyNZUxXXH2T2gy1FkI5LUA7aWJfN+lG6Id+abSoECQEkadZ1G2jECU8MkO/YeT8Rhv0uSAGwNmS/V68ajJjujpITje4YIm353kfS4IfpBGUIPmMV+5OiTkIGFPalMir3JDUSZkipcz4VuwXc6dCrx92zA7YPtbdf7JRHUZLu~4468787~3359545; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www10.wellsfargomedia.com/favicon.ico
104.110.9.46200 OK 1.2 kB URL HTTP/2 www10.wellsfargomedia.com/favicon.ico
IP 104.110.9.46:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 11e6b612207abf064158e69540c16e24
9e3912485514553b2e17b578c8340986f1172b4d
8670da3c95c03b59b091eac882b67e0b59b765c455b8d871abd2e55d4618573b
GET /favicon.ico HTTP/1.1
Host: www10.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 1150
last-modified: Thu, 29 Sep 2022 01:26:08 GMT
etag: "6334f430-47e"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
access-control-allow-methods: POST
allow: GET, POST, OPTIONS
$host: wellsfargo.com
accept-ranges: bytes
cache-control: max-age=10368000
expires: Sun, 28 May 2023 17:48:13 GMT
date: Sat, 28 Jan 2023 17:48:13 GMT
X-Firefox-Spdy: h2
static.wellsfargo.com/tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016
95.101.10.120200 OK 1.8 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1090)
Hash 79d4c5b9ced319f1894c68d097b54f9c
75ad64d30369f91d7e2831b5b024364839e74d2d
aece2b5528a0cce3613b0ee26cc3455e0fae06eb730d8932d3baf5122766a5ff
GET /tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 07 Nov 2022 21:02:08 GMT
Vary: Accept-Encoding
ETag: W/"63697250-1123"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1841
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=GUWcajF9BnMwg4iyqKArIw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js
95.101.10.120200 OK 819 B URL HTTP/1.1 static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (720)
Hash 400e574e68b2d11076d96efd5cc087ec
873e23f01b6356fc78aab57cdb1308d458ae6888
454b56cd80b0412a4ec874001dcedaa491e4ca376b3805d1d91dd83071033564
GET /tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 12 Oct 2022 20:08:15 GMT
Vary: Accept-Encoding
ETag: W/"63471eaf-798"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 819
Date: Sat, 28 Jan 2023 17:48:13 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=PI5woeGRv%2fNRfEQml15hhw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545?
216.58.207.230302 Found 0 B URL HTTP/2 ad.doubleclick.net/ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545?
IP 216.58.207.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 17:48:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 18:03:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b139ef842e1ece23a2fb6810cbb79f0b
75eb76995244c2e1841e0f3283f126cf13a77b04
7287866e126fff5e98015a2750cfe2889271f4f7e4084668e69e939a951243be
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 17:48:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 13:42:55 GMT
Expires: Wed, 01 Feb 2023 13:42:54 GMT
Etag: "75eb76995244c2e1841e0f3283f126cf13a77b04"
Cache-Control: max-age=330280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b8eca7cc81c06-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
142.250.74.34302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bgitopazdowntown.ddireal.vn/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 17:48:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.rlcdn.com/api/identity/idl?pid=1317
34.120.133.55451 Unavailable For Legal Reasons 0 B URL HTTP/2 api.rlcdn.com/api/identity/idl?pid=1317
IP 34.120.133.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/identity/idl?pid=1317 HTTP/1.1
Host: api.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Sat, 28 Jan 2023 17:48:13 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b139ef842e1ece23a2fb6810cbb79f0b
75eb76995244c2e1841e0f3283f126cf13a77b04
7287866e126fff5e98015a2750cfe2889271f4f7e4084668e69e939a951243be
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 17:48:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 13:42:55 GMT
Expires: Wed, 01 Feb 2023 13:42:54 GMT
Etag: "75eb76995244c2e1841e0f3283f126cf13a77b04"
Cache-Control: max-age=330280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790b8ecb2dca1c06-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
142.250.74.66200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bgitopazdowntown.ddireal.vn/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 17:48:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 17:48:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js
95.101.10.120200 OK 78 kB URL HTTP/1.1 static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js
IP 95.101.10.120:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (11854)
Hash 2d4114748dd4ba96746b364ddbb90efd
71af87311a51b11de269075c7d5222ac27170efb
c86a5b651313fa185fbb81f5e78f9ec42ae8a466532995e4b6bfda7407f5ac81
GET /tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 12 Oct 2022 20:08:15 GMT
Vary: Accept-Encoding
ETag: W/"63471eaf-54d3a"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 78340
Date: Sat, 28 Jan 2023 17:48:14 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=uTVb9Bs4sVgvo9qv2u6s1Q%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
resources.digital-cloud-prem.medallia.com/wdcusprem/57907/onsite/onsiteData.json
151.101.129.230200 OK 1.7 kB URL HTTP/2 resources.digital-cloud-prem.medallia.com/wdcusprem/57907/onsite/onsiteData.json
IP 151.101.129.230:0
File type JSON data\012- , ASCII text, with very long lines (2056)
Hash f38ed93e44a5704769b1cde3313fec33
adfefe9525a7a91ce83efac49e842f1459a27152
f1cb60960305c1168163f09cff72c959e78f1ba849182663928062afa4d0a32b
GET /wdcusprem/57907/onsite/onsiteData.json HTTP/1.1
Host: resources.digital-cloud-prem.medallia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: K9E6Lyn+5zYa02+BxUqOd1Ieh5RKsSyELv7lzKovxEeIMRmFJhuRKBOapqg1hA2HtHbXLhUapfU=
x-amz-request-id: ZVR7KG1BQXVFM2TS
last-modified: Thu, 05 Jan 2023 18:35:58 GMT
etag: "2e8716b6038e3c354a2da4f630551d90"
x-amz-version-id: Opbxz_xndE31tgAdXrS7zLsEpNCLZ9SJ
content-type: application/json
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
accept-ranges: bytes
date: Sat, 28 Jan 2023 17:48:14 GMT
age: 1984336
x-served-by: cache-pao17458-PAO, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 131160, 1
x-timer: S1674928094.263530,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 1742
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/vyHb?d=ZW5jZEBtOVliNkVJR24xWlNJWFpVdGx0SXdyQ1E0OXBJRjUzQXJXMi9GSFM3a3B5STNtK0U0dmxHUE45REtpcjlYTitRWGkybDZwZHlFZ0tlRWh2L1ZRRHRTTDhabEdoSEJmUmNFNnN2OGZiem5GMDdZV1djazRwdkFETS80V3hHY2V0eUYvZS9hTXV2cnRvYXQ2bnprc1U3UGt3cWw1SVJqOXJSbjhDeDhvRHVHY2cxV2s1VW5XdzBCRCsxMTA5TTFMRFQzL2pvYlp4Q1pUVnp3ZVBhei9IQnFwVkFqRW0rcEQ5eEpkbTg5TkVpQ1RRUXJmdmZta0JCZXgzYUxsRTdLelBZWEovaVdsbWxleFNMemh3L3AwVHgyaHZjSkhhbm9zV1pFZm1MOGpnZmx0KzJ4aytwUmEwSEJyclprejF1TTYzQmNSNW1aZjdMMVd4Ykg4UFIzdEUrRnpwellLK3JsMGdKNzVMeXh3VkZmNGRVUUdlMHNDbERuMllrOUJ1UWh1S0E3c2E5R1RBendxZk1tWldRVmk1YWp0RURHTDhqRU8rVXJIZS9lcUNDcEthRlAyTTdNMDluTTJncEYrT0Y3WkFkMFVoekFNczNrOU1hOVRjSkIwSDcyY2xXZUpzdTF3QVpwaEtyUnVtVitxV2JhYlExU2UzN0h1bjFrelp5ejV3cXJRS2RwUUNoNlB4SkI1dTh2R0U1Y2w0alJoYlRnUEZjV1g3aFpyenRxUTFzQVNvbGIvK0U2ZkRVUzFoY1gxdkh4d3ZzdUxxQzlyTmdQeHNwfDk1OTI2M2Q4ZWRhMzU2ZmY0MWFhYTA0YWQ1NDExZDFkMzM4YzVhODFjZWU4YmUyMWNhNWE0NWUyZDBhODk4YzY5NTZkZjlhMDIzNzIxYWY0NWZhOTgxZTM3NTAyOGZhNDhlYjA5N2FhYzRhNzMzMTQyZmJjZWVlODQ1YTE4MTZkNDIzZTQzYmU3MjYwMDE1MjlkMzdkNjA4YWIxNjE5YzY2MTllZWE0NDBiZGIyYTUyYzMwYThjOGZhZjBhMzFmOGYxYzAzMTczZGFmMTQ0NTUwZjk4NzYwZWYxZDkwNzBmNzM2NzU3ZjZkNjFjNjdiZjc1YmU5ZTJjMWJhMTYzMmQ4OTJjM2JkY2JlOWRkYjYwMjc5ZDYwMDVlZjRmNzMyNjJmMDJkZTM0Mzg1ZDBjYTg2MzMxMzY3ZjM1M2NhMWZjNjViOTk3MjM2MTlhODk0ZWVmZWM2MDgwMzM5OGZiOGE1MzRmNmE1ZjNjMDBmZTI0ZmI1YWQzZWJkZTgzNDRmOTc3NDZlMTMxMjdhNzdhNjA5MGU5NTY3MDBiY2RlZDkxNDFjYjBkMWRhZTJmYmVjZTlkOWI3MjlhZTYyZGIwMDdkMTVkZTQ2MDc5ZDI3MGU0YTFmZjVkZDdkMjAxNzRlZWUwYzBjMjVhN2JhNjMwYzAxMjYwM2IxNGI4NTZjZjRlfDAwZWUwYjYyZWNhYWM4OWY%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=yrbedxwwdbzh_bwm&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
95.101.10.194200 OK 90 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=ZW5jZEBtOVliNkVJR24xWlNJWFpVdGx0SXdyQ1E0OXBJRjUzQXJXMi9GSFM3a3B5STNtK0U0dmxHUE45REtpcjlYTitRWGkybDZwZHlFZ0tlRWh2L1ZRRHRTTDhabEdoSEJmUmNFNnN2OGZiem5GMDdZV1djazRwdkFETS80V3hHY2V0eUYvZS9hTXV2cnRvYXQ2bnprc1U3UGt3cWw1SVJqOXJSbjhDeDhvRHVHY2cxV2s1VW5XdzBCRCsxMTA5TTFMRFQzL2pvYlp4Q1pUVnp3ZVBhei9IQnFwVkFqRW0rcEQ5eEpkbTg5TkVpQ1RRUXJmdmZta0JCZXgzYUxsRTdLelBZWEovaVdsbWxleFNMemh3L3AwVHgyaHZjSkhhbm9zV1pFZm1MOGpnZmx0KzJ4aytwUmEwSEJyclprejF1TTYzQmNSNW1aZjdMMVd4Ykg4UFIzdEUrRnpwellLK3JsMGdKNzVMeXh3VkZmNGRVUUdlMHNDbERuMllrOUJ1UWh1S0E3c2E5R1RBendxZk1tWldRVmk1YWp0RURHTDhqRU8rVXJIZS9lcUNDcEthRlAyTTdNMDluTTJncEYrT0Y3WkFkMFVoekFNczNrOU1hOVRjSkIwSDcyY2xXZUpzdTF3QVpwaEtyUnVtVitxV2JhYlExU2UzN0h1bjFrelp5ejV3cXJRS2RwUUNoNlB4SkI1dTh2R0U1Y2w0alJoYlRnUEZjV1g3aFpyenRxUTFzQVNvbGIvK0U2ZkRVUzFoY1gxdkh4d3ZzdUxxQzlyTmdQeHNwfDk1OTI2M2Q4ZWRhMzU2ZmY0MWFhYTA0YWQ1NDExZDFkMzM4YzVhODFjZWU4YmUyMWNhNWE0NWUyZDBhODk4YzY5NTZkZjlhMDIzNzIxYWY0NWZhOTgxZTM3NTAyOGZhNDhlYjA5N2FhYzRhNzMzMTQyZmJjZWVlODQ1YTE4MTZkNDIzZTQzYmU3MjYwMDE1MjlkMzdkNjA4YWIxNjE5YzY2MTllZWE0NDBiZGIyYTUyYzMwYThjOGZhZjBhMzFmOGYxYzAzMTczZGFmMTQ0NTUwZjk4NzYwZWYxZDkwNzBmNzM2NzU3ZjZkNjFjNjdiZjc1YmU5ZTJjMWJhMTYzMmQ4OTJjM2JkY2JlOWRkYjYwMjc5ZDYwMDVlZjRmNzMyNjJmMDJkZTM0Mzg1ZDBjYTg2MzMxMzY3ZjM1M2NhMWZjNjViOTk3MjM2MTlhODk0ZWVmZWM2MDgwMzM5OGZiOGE1MzRmNmE1ZjNjMDBmZTI0ZmI1YWQzZWJkZTgzNDRmOTc3NDZlMTMxMjdhNzdhNjA5MGU5NTY3MDBiY2RlZDkxNDFjYjBkMWRhZTJmYmVjZTlkOWI3MjlhZTYyZGIwMDdkMTVkZTQ2MDc5ZDI3MGU0YTFmZjVkZDdkMjAxNzRlZWUwYzBjMjVhN2JhNjMwYzAxMjYwM2IxNGI4NTZjZjRlfDAwZWUwYjYyZWNhYWM4OWY%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=yrbedxwwdbzh_bwm&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 911e45385cd28d9d7b308e476cc8678a
bb297da2ae9198febf2dcace7fe2e6b3e2baab6b
9fe8b51bc26139b96053d0fe49559f3f79022e8bc85660a06cfa946c406fd675
GET /AIDO/vyHb?d=ZW5jZEBtOVliNkVJR24xWlNJWFpVdGx0SXdyQ1E0OXBJRjUzQXJXMi9GSFM3a3B5STNtK0U0dmxHUE45REtpcjlYTitRWGkybDZwZHlFZ0tlRWh2L1ZRRHRTTDhabEdoSEJmUmNFNnN2OGZiem5GMDdZV1djazRwdkFETS80V3hHY2V0eUYvZS9hTXV2cnRvYXQ2bnprc1U3UGt3cWw1SVJqOXJSbjhDeDhvRHVHY2cxV2s1VW5XdzBCRCsxMTA5TTFMRFQzL2pvYlp4Q1pUVnp3ZVBhei9IQnFwVkFqRW0rcEQ5eEpkbTg5TkVpQ1RRUXJmdmZta0JCZXgzYUxsRTdLelBZWEovaVdsbWxleFNMemh3L3AwVHgyaHZjSkhhbm9zV1pFZm1MOGpnZmx0KzJ4aytwUmEwSEJyclprejF1TTYzQmNSNW1aZjdMMVd4Ykg4UFIzdEUrRnpwellLK3JsMGdKNzVMeXh3VkZmNGRVUUdlMHNDbERuMllrOUJ1UWh1S0E3c2E5R1RBendxZk1tWldRVmk1YWp0RURHTDhqRU8rVXJIZS9lcUNDcEthRlAyTTdNMDluTTJncEYrT0Y3WkFkMFVoekFNczNrOU1hOVRjSkIwSDcyY2xXZUpzdTF3QVpwaEtyUnVtVitxV2JhYlExU2UzN0h1bjFrelp5ejV3cXJRS2RwUUNoNlB4SkI1dTh2R0U1Y2w0alJoYlRnUEZjV1g3aFpyenRxUTFzQVNvbGIvK0U2ZkRVUzFoY1gxdkh4d3ZzdUxxQzlyTmdQeHNwfDk1OTI2M2Q4ZWRhMzU2ZmY0MWFhYTA0YWQ1NDExZDFkMzM4YzVhODFjZWU4YmUyMWNhNWE0NWUyZDBhODk4YzY5NTZkZjlhMDIzNzIxYWY0NWZhOTgxZTM3NTAyOGZhNDhlYjA5N2FhYzRhNzMzMTQyZmJjZWVlODQ1YTE4MTZkNDIzZTQzYmU3MjYwMDE1MjlkMzdkNjA4YWIxNjE5YzY2MTllZWE0NDBiZGIyYTUyYzMwYThjOGZhZjBhMzFmOGYxYzAzMTczZGFmMTQ0NTUwZjk4NzYwZWYxZDkwNzBmNzM2NzU3ZjZkNjFjNjdiZjc1YmU5ZTJjMWJhMTYzMmQ4OTJjM2JkY2JlOWRkYjYwMjc5ZDYwMDVlZjRmNzMyNjJmMDJkZTM0Mzg1ZDBjYTg2MzMxMzY3ZjM1M2NhMWZjNjViOTk3MjM2MTlhODk0ZWVmZWM2MDgwMzM5OGZiOGE1MzRmNmE1ZjNjMDBmZTI0ZmI1YWQzZWJkZTgzNDRmOTc3NDZlMTMxMjdhNzdhNjA5MGU5NTY3MDBiY2RlZDkxNDFjYjBkMWRhZTJmYmVjZTlkOWI3MjlhZTYyZGIwMDdkMTVkZTQ2MDc5ZDI3MGU0YTFmZjVkZDdkMjAxNzRlZWUwYzBjMjVhN2JhNjMwYzAxMjYwM2IxNGI4NTZjZjRlfDAwZWUwYjYyZWNhYWM4OWY%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=yrbedxwwdbzh_bwm&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 90
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:14 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=E1iWo%2f4sutEMKsvTsmwWD%2f7u8H9lqNfRiLHCgMCb9Vck9UljIJhvM3pgiJTTRqBx; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:14 GMT;Httponly; Secure
_abck=6041BB2CC80956E3B522E1A6E5F76FB8~-1~YAAQvgplX36cPsWFAQAAanx++QlCVaATfIjbR0z4XsxpMeLAX/hnWS33su2nwaMV5xija9evHlV0lmA0apc16+zlh1qn5QE00hjBGy4p+AphAugS2poOUY+oee3/rdR87SCiMuy3hz8tp+b0FFDbctSDn3lKADnrG377q77nkfo8d9faazq/LMxTFIDwF7cQjA40JYBvjFEiHMoQBRc57WaazZKG9BvYrWd7+06dGhk9Z9qJHWZ7wA3bYuFDH+NCMl5dQHFTcDzxJ6uQY4E4miQJm+kSiy+pMDXDmkMom+mMvlpdO+ASEC9kxg7N4c2PPUxNksNUf32bzBWJgnz491Zxi3FaINriby+mnP+PF6QtU/zOxelIyI0HjpnnBavlnw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=86F9500063730FE269076367389D280E~YAAQvgplX3+cPsWFAQAAanx++RKuSG78YX6H2wGQ3t1/r3PtcbcKycukEhDq2ue8SGcFU3n5PZoyGF3EoXW02mSBOA5kAwzb9PmF2X/QyGWouwQSQvukoKd+rRzPXKa8PxhdsI9AFytxCuiEC/b114UIouGDMfnVb51vRJQCoTPcWKYqQtLN1zYp2pRZPKat+5iZktcEKD/YJHGOvO68GtcsDqsuahwebpwKFYU07Ye74Kq4Tvb/KF26ZuOIx4B43CYZ/9x9OZQiVT8D8IFwX0vEy9FsrArucbHAkE6tt67B5eebHoWO~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=zufgavscnoaxiztd&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
95.101.10.194200 OK 90 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=ZW5jZEBOMWRlZ1k0ekR5dEI5OXFIR00xMG1nTEdYWDZFUGFGcjZ2YUJtc1lFTWdOcldvWStpZEpnSCtLK3hhRHB6emxkMlVUYlFNeVM4VWh2ZjFraDNhcnhiSEw1WktCZndpbXVkOEF6TzRNYmY4ZnZiNjN6cGpnMXJkMmE0OTBDYk1FS1lUeTkwZUpmVkZlZENJNnIwRWM4TGZHU3pvaFNjTTlhcS8weXY4alU2T1l1WnA2anQ2UVpmd1c3M1ltNllneXNTYTZlSy9YNFNseTljZ01pZUsxdEdPbVlGVDgxbXNiQVlsQWQvYUk4V1FHWmUzKzJsaEZFSGNoNnlHVjR0VXFNNEE1S3pBc1JRUmllVEk4QWdUSmVjMFpHb2plWU1kcUx2c1ZkT3cwdTcvNnNpbDNMNStJc2hHdmtOTWNkZ002Znhic0JmeUJLT0ExQ25RUGlzVWJIdGhHWHh5a0dJcm1Edytxbi8vT1NSaElqVXBKT3hZS1BBYTVNQzVNZDBvTzMyT2N4VGVoYXBobm5vbnUyWWVYM2d2OWRTbWtBTWJwOWdXMUZuK3pnQ3lpbkZ5eXZhcjFPQms3TkNNbTNQdkdiaTNjTStKTGtXc0t6WGtuU2NKRlJwcjZTcnJSc29SSnNWS1dLYnoxcVJlWWZ6M0lpU2IvSTg5S1pMR3MwMlJya210TWN3Q0wxNVN5SUs0SXhJbjRFNDd5QUdBL21oR1kzQldKSFYvbEo2dUFNQnZFcnBMc2puUXRXN3hnaVRBNWNPWjh6STcrUjFOUy9CL3dDSW80UXpOUU40eUw3bDFGQ2taZkxqdjQxRTRONDdjUmtrQkppT096TXZaNEt1TmpkdFJwZURRVStCL0VRT00rQXhKWU1xbmF4YmU4YjBYYUlRVElWRWNNa3JoWWpyWXFadkE9PXxlYTAwOWY0Mjg1ZjU1YzRkNzE1MzEzNGJlN2NkYmM1ZmM1NzNjMDk5ZTAyY2ZiN2I3YWIxMjUzOTk3MDc0MzY3ODAzZGFhZmE5YmI1MGE4MDdlZjk5N2RhNzQ0ZDMwZmNlZjlkZDFiMDhhOTMzZmVlMjBmNmZmNmIyZjRkMjlmYTg5ODQ0MmZmMDkxZmU4OWJhNzcwYjZmODE3ZjI0ZmZmYjRjZWFjZjEyMjJiMmY5YjM1ZDE4MGI5MmJiN2M3YzA1MTIwZDlmYzc0ODM0YmI0YTExYWQyNzU1OWNlN2I4MDk5NWI4ZTBjNTJlOWNhYTk5NzRjYjQ0NDBhY2UxYjE0MGMyYWM4Njk0ZDg5MWNjOTJjNmRkMjUxODgyM2YwOTcyYzcxYTAyZTY1MmYwMGJiYWQ1YTkyYzRmMGY3YmI3ZDUxMTcxYzBlNWFiNmMzOGI3OTQyYTRlMjUwN2FiZTJmZDJiY2FlNjc4ZjQ4MzY3MTM0ZWFmZWJkY2ZlNWM5NTU0NGNlMTE1MzExYTllZjg5M2NlMTdiZTU0ZTE2NWVmNWIyMDExOTM1NTg4ZWJjNjhhZDliMGU1MzZjODE3MzQwMWI4MmY5ZmUxYTMyMWEwMjliYzBmNDJhYjIwZTk3MmY2NDUyOWFmNzhhMjZiOGZjMWE3YjFiYWEzMDEwNDQ0MHwwMGVlMGI2MmVjYWFjODlm&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=zufgavscnoaxiztd&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash e10b1f971b948b542b3358c671866fb0
00eb08bd47443e0ef926d44c960b403b139cbd8f
39fd2b6f6b19f313defcce13f075166e1d2bc373d4a110aa04c8c645c7674ea3
GET /AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=zufgavscnoaxiztd&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 90
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:14 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=HhO7iuVoI0gMIITayNo0Y0Ba9DvXSybXMg8Dp3kqWhs%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:14 GMT;Httponly; Secure
_abck=9E4C16D397BCCB03310A46F30BDD8700~-1~YAAQvgplX4CcPsWFAQAAs3x++Qk4yqjWbC40uVqaklbLHa0EuU1nn1W/OXvp/Fwr4Cr72kZssAqMgua7LkVQYzCbQn9WpnnjQcBp250RuwEBkkx2W/0QnySYvJgTz0QxoZYeWb2XwyENPeNuJAD3Podq5bnzgivWytJn0jyz/4AByEFXONU0qkA3m58fRtz5fpjxydNZ8OWqpiLYi/UtX4RwDQS2uA+lUsa9WBhN0qTXmc8qTnJxEzJw8oujV26XNonwdA52eGs/Fi4P6eddlaXCoSI18/rOLfK2m2pEXudwa+jaJUmcsrUyyf2WF0qvHE61gYvA1fIroAb0SVrJngxKxX8NIXa49/rJVqVW32AkdQLleGLxX31qii/Haj97RQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=21162F2EEA1310A3F0A5875F10E1742A~YAAQvgplX4GcPsWFAQAAs3x++RIXJ120q2mFO+jX4KCRID6Gk9FmQNkHUgLIw5GUnoFHzDJmNDVKTUzuRoIaq1pkLKGuW7hUqHi3VCyrdFQVOOF0To1HImUk/Sf1emdJIFSGlhm7vhLv4t+LU9CNvRP85PxMsMf9SKnFJNOOSku4kf4RVoc7+JRBhq8XJYXrUUSGIcZHQvrjRJmb+O7uN3JFflFvJfwMFGt620DsDAdh7zaTUQUbWridYppxJsaRpM8RPAVzowaZoKb24jG2F6vtSGywx3JjIWxLbB/uZhGNOmXOboTo~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
95.101.10.194200 OK 8.6 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (22159), with no line terminators
Hash cfdb2fc49445d480f7adf8c11f569cd7
80d0a7cf030fdd06808f1f4e036bbed3e4e9df61
162d77629a40deb5e8fabed04a2ae9bb846c62cece84775a4a7440028b457854
GET /AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: Sat, 28 Jan 2023 18:48:14 GMT
X-XSS-Protection: 1; mode=block
Cache-Control: private, max-age=3600
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 10805 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:14 GMT
Content-Length: 8559
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=NJ7jok0xkXvGT+jbkY+se98Gq3q5wbNBDx3LV+Tj1sdk2X7haxZhW0qoXCElGGbe; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:14 GMT;Httponly; Secure
_abck=59E7219C5D718FF7900707E83289444A~-1~YAAQvgplX4KcPsWFAQAANn1++QmPUcvytopu5ROY2jVRtvPgHIsc5o9oWtEu7LODIfLvrLdraq05Rp2zK2OYMV3o6ijD/aEFZynWXcA45TIe7bXwCy9ev1xJDW5Iel+FNlsONzfQlkAt8nx5pDY7Stbj7rG4fdvfdKZgp3cDryG1DwhbtzAfrbq4l2vB7gPA7wRzossxthJxcvNxyN2fxXy7s66ChLyuTqi2GJi6zIFrfmlqfUhymnXZYgnpgGboEZYDeYi2QFRKOMpmvhp30MMCcyi4LH6vlJNIyksR1WHdKTup151u7ILXVj4+YB609Hl1rxIOF6+l81/2QbPT5rNMKt4HkMM690t3Gw3C1HGnmsIgyJ8NwTywX9XCSSj6SQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=F2B592C2CD47D414F497B8B155B5F52D~YAAQvgplX4OcPsWFAQAANn1++RJ2xP13S1aGu5pivM5mtMNnQyN9f6kx7ZcxUV5iRXaT/rwA709x93yatrR/Ajc9dIc5K1Y6lQqgEcc8WpYXbdjlVHc0+YN+Zr65BkmFhDclH0KUqC3qULytlnH0bOUYj4UHfTXyFtd6IBgYfk260eWChsi8siJluB7Ax6+el29srJ5jyCLmK1CNiG9mPIQZ0oaIi9In/iFi3HrfqWtIUP0hiFXF+fzdu2V7Ofbs9jxhsJ/5YuTF06V5Td83Y1BIHqqQwUOIwbeV9kY0HFwj8MbZhSnd~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194200 OK 76 kB URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
Hash 222851cd0c5cd8989e4b3806fbcff1fc
d00bc04b026070707ac1ab8500e947e915b91b68
d62d83f97f6801bbcfae25869d65d6bac7ae5ef1ed405c0ae6cccc0210e59d66
GET /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:21:49 GMT
ETag: "fb4318c43422d46079682cfdd37a3c8e4ee1cc4ec2e24902dfdb845bec7855e1"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 75465
Date: Sat, 28 Jan 2023 17:48:14 GMT
Connection: keep-alive
Cache-Control: max-age=21600
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=g3oJXnmHkIVaJKtOH4wpdg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=C5B1B1844AAD53EC762B31F9BB35681F~-1~YAAQvgplX4ScPsWFAQAAWX1++QmMwt9/1wPq/AAZPpTOP26RE6RaUbxK5RfYBz+u7Q5PUplLjEYDMhQstOa2pZ4e5vTQF9w+XXMfMlKuPvhvQzWWPvTQp1diQC2+b7hoS2U3MvfW58psMf23Zs7QLD9SBixgjg4BPwM0AYW5FUD6fVKJb3hqNa4HvkL3x74kPDXrxvbadTiuq0m5DkyGZkg060oq+gDyWAwz99mKN6uUasi7d6J6BjHqyA/N7Y9UBggMNC1B0IogZHGaz1JVodbaOwJrQXndbsyHBW+fT/HYlIA8I61uSNALRCiwZe8jlFiuyjNiQ/v9LYHU7aMKw6qyH6Iy9B84O1k0KZY0KgGvkS1Q06vFDa6wuDE8NxsfQg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=F505F34BF328F44CB3B1EE8D76B2AAE4~YAAQvgplX4WcPsWFAQAAWX1++RKRWCw04RG9/qCgEDoDKXzTcUcScEbq9T/jBt3KaDLWfQ7DCqNdTnBpGlkgBzt1CcjOgE3Qn2MUhXStP2hpc5T3IArfUcxOhhc5xdsiZU/TjsCXokYqogIse0H86z9KCe6q3t4BIDzHK/Pi3PII0FNOik1qsKlygEb2Wf5HZdQbAIiKt4k3zWEnHKW0RbuYwIwCaGcsKd5+TzBPmkXCX8M3xmrhclggUsTI0VgMrC8veUXNRGYd3dcs2b+T+oRekd/+BwTQooj3jnqvZpevZKfJ76hl~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
ocsps.ssl.com/
100.24.223.135200 OK 1.8 kB IP 100.24.223.135:0
Hash 1131587a979b4be52dd5c8b1a9d2b280
529194088922a5d9c393ca8dbfd2272651114fda
447a0f6335ab7d703df3de6cf972b2b60ea8076cc88681fb98edd661b19bad62
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 17:48:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sat, 04 Feb 2023 16:48:37 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "529194088922a5d9c393ca8dbfd2272651114fda"
Last-Modified: Sat, 28 Jan 2023 16:48:38 GMT
X-Proxy-Cache: HIT
ocsps.ssl.com/
100.24.223.135200 OK 1.8 kB IP 100.24.223.135:0
Hash 6a73b317fb8ab9f82b3b6137263e6850
91f6c38453fb173b0f23cb5f1f47f36d5f65730c
a7a52d864e3f49112b3f7567c150e6b27b9d69bc8ef43d2ac667f5e0fe6f0cd7
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 17:48:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sat, 04 Feb 2023 15:26:16 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "91f6c38453fb173b0f23cb5f1f47f36d5f65730c"
Last-Modified: Sat, 28 Jan 2023 15:26:17 GMT
X-Proxy-Cache: HIT
connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809779116648
95.101.10.194200 OK 31 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809779116648
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash 4f5ac4cedd5092fe76163c3537540d34
a176af0d17d3468a9600952450a31794a64092f1
444cebdcbea6a79226b532e4e19a930e1928495c4abc9960893ccb4dd9eefecd
GET /AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809779116648 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 40198 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:14 GMT
Content-Length: 31262
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=14DH0XJHhZ6WSWVvK+2P8Z%2fx92kXBsm6EcUfMlzV3hc%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:14 GMT;Httponly; Secure
_abck=F4C4BFE3A7108A623C94875DD7AF9C64~-1~YAAQvgplX4acPsWFAQAAjH1++QmFS6Bi7Eq6DvAyTD3refVx7RTMjC3WBnqra35O4IEWEL3J0Ame9NiO5xld2oVEgoJnJMyWlYCX0D2oipfGidvIrvao0dqme4EjDgdXPT5e/pvK5p2zLAlADbeldMcVCbGXeOn2Dv9V8eKEA/ksvgmxcBkVuMUE7lbkVI8+R9zcAK0hKi2soojzgXfAQQPkXe8qNyq0XoHjqpd4VHdUPCGftp6J9685q3l2vvX5Qz0ZVfXtxYyNVTVXTON4b+tjd0YPFMFQJgnWsuE1GZJq4udkFuOslB0cHzqR1NIeMt6Heypq1SpW2lXtOu1O8P/kgBvz7l/hAlwVGo5FRBQRP8NLBixXftkKPLsWyJGO/A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=F5C64197325FAC06E7B7063358B48E37~YAAQvgplX4ecPsWFAQAAjH1++RLZorWRUfEnN3b06l/Mlfa1ZzVfdop1FVl5wHCcTjXQMMWQdADVHDMjHousGcUd+/QXBEXQKFTg0pgQoQYeE1vcuSdp+TaA/1cdKIG16Eca1WEqpQgMXh2ASm7tk39qEzC2+E5dByelS8pGpPXw0NhuPMoZvEA/ZZo1gbMtOn2UTY6zqGUeoKQEOIsmMz5pTtqWOtvpGIzUQ49b5D+Um+u80NebjPOCrkasitejiKz7kQnlI2oe+1jJgFkVFzj1VLR8+51Wz8CUjQcRIUmK+NvmJKf6~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809778766168
95.101.10.194200 OK 29 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809778766168
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash ccd4df26008718bcd7e278b57ce7bfd0
27e65a7de55b51fc28fd7a5c72078e416086a3de
835aa028d1764f0be9fb041d3f15e8fb7c83aace66fea31b39993a4df0fbfa84
GET /AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809778766168 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 37214 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 17:48:14 GMT
Content-Length: 28879
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=eOeu6l0NYxAwSc4FtN9nT3xXEqVuvtP+e2%2f3JleGYR9cpbFu8gK8MldcBkCYQaxS; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:14 GMT;Httponly; Secure
_abck=0FBD25B841741C3DEFB9DFD1341CD41E~-1~YAAQvgplX4icPsWFAQAAjH1++QmuP4ycMprPeg7pIItsddaAQLM+Fk3pyLCOdPlfDQmwByeYZQd6k/RSQf0neR6e3NMpD0wNfrhUluUZhO/Lyy37QH8Yeaxg0+XG9wYxKvklD7yDjYC5bIuuKiLU6I0yHifQgmvfGhC7X55oI9SjVYIr0TsScp6tk9Aa5yF9m0v+jmJaZck/Ld2Z3UaMwtMvymVOZeID+YpX1gp4yeijny8qLPSoTDINhe8mRxOHG8Rm0GkVW4wRY7gfBTHf9buviFcnaWqA7DDdqYnZzqr4KZcdDhplWEG7dl3nqyiyzXSVOeBvWrXVtV6iSghUM8DWuevyscp5QZSlnE6gPspeK4JGCrufs539XoyzWfuD4Q==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=5091C2EB7B60DF504DDC640675E14112~YAAQvgplX4mcPsWFAQAAjH1++RI+Y62rk7r3wZxgHhRhF08EWyENUytmv7mGxMUDWVwsby0eU34H5qsDalIKvC6cru5e4+5J5YX5cdBhJik63uZpQEW1AONu8IItPKFUn7XgIThagYK44GZ80DkCiKyT7mTFuvQe/p6hVjfySzxytzlkV+bl4PLUImeyBKShpxMsA0N99WahgbjEEYf+xEo5nPYs1u5z72TOMzui0K5Op43tnV7Fr1J6gZQchkoUk6TFMGJlk0Ore4pYef4xThsMELSYHhxPtszi7Ms3jPGR5+hAHjWO~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
35.241.45.82200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP 35.241.45.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2425
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 17:48:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://bgitopazdowntown.ddireal.vn
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-r7gp
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
35.241.45.82200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP 35.241.45.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2186
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 17:48:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://bgitopazdowntown.ddireal.vn
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-p7bm
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2482
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=yidNsjp%2fUzxGAlqwUtmRbw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=yidNsjp%2fUzxGAlqwUtmRbw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=94C544CAC695973535237B721CFE552F~-1~YAAQvgplX4ucPsWFAQAA+31++QmucYRCd0JPDLndrzLa7l3RvUi8sWRWHl1iWXnWhunQAKtFR7iCil6FogxZObOz7rqQsPokGZ9BiwSzHwbX4dZN91Q4oms0O8qq+ReOz2so4xAL62KHgmMwrdYuwAo6lfmUyhwh5aPpYpUtasaiZQUbDz/DLfTMJWbIG4zQvCg38cm9wbp6Eunt18i3Ljp4jdo0mSqqYZsFYcZHNEscAOiDrUVLCJicz9QLok0/Y5VQPlw/1OnEIfY7EF/lg6QLC/2t+6jzVeyvzFCtagcqDYcTsMEl4WX31gNRIafgJSEeBIYmWjWM10GLkddbtSP8+Y1rl3Y+c2sM887P7PoPMj1CCAE361p4NeJGotPgmg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=741263BA8146D7B363A7EEDB1B2CD43E~YAAQvgplX4ycPsWFAQAA+31++RJN/AHGLsDuAv+GeCv51I5UyBgDwNC1hExqAPXu3a5w0jnKNpAZUBwlDzEdeHBoVPLLqZrb6ORvESxpklkb593pgAtFQR7ZWTYfREXj/KGSiWaefkhVJY9lcZmyM0Sn2VUnWv2sQCy70EvxyDnjZBJMAeknsF4L0ddqoSAOc4cL++/Wrmd5ZK+AtbKobUb6kRE43n+Yrixhmf2m/bBGX2zMm8MoZYnoOnyPxLZxMi+90LV9Xr5fH1+ASZ5AXh0Lfm49V8bKBY5Lce9HWKKxZ+F9f/eL~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194200 OK 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
GET /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809778766168
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:21:49 GMT
ETag: "fb4318c43422d46079682cfdd37a3c8e4ee1cc4ec2e24902dfdb845bec7855e1"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 75465
Date: Sat, 28 Jan 2023 17:48:14 GMT
Connection: keep-alive
Cache-Control: max-age=21600
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Rr+7MpxTmd062MqUuXpN5g%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=19BE07047B5A5A9B9769AE53E1713BC9~-1~YAAQvgplX42cPsWFAQAAGn5++Qm/q1BFeANdEzhoz1oZrpmp1qNPSBeBakU90GLwBlgDz5tW+94e2+zq+WN5AqHbobVq6ICi819d+lxcOnS2BHkFKEV1k1P4MBZaLHQ/Xc5BIF/z/dI7HE3h21J+zV4xcCL+irLsP0zO03WGmM1OnWjemnqOMGf6MwHdGblHtyFlIR3gBIs6ighiIOK9DQG4ys1exYEgKV7RUvM9tww2YMxAcot+rQ/nzOtbnrj0UXcxA4KuhsruzJSL6JV0VLpCzyGfMuFfg6JgW7vBE7yLWvGLThXcpTB7KP0mlqPVy8ny3PvbNqovwZ1ypFIIkY+OzX51eCQZeUlP/B5GE8TQxUDqv8GAE9YWx5BSEX/10w==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=335E21FAC47CD175952DAB3F00E4D0A6~YAAQvgplX46cPsWFAQAAGn5++RInbLHkupPp0pjWZQVUjccJmTBjgvilw/dx2rrAFlj1j2tHNVO8fR4XD/XrZLqRTza1tGInk7WNV8QluRJ/4Pf+Iu1Bosm+akxnWDuSPHsYtMQw8k+9jIPkvKGELngWhhMOsBXx/QEIQFypxq3ceQb1R8KaMMRiekmBvZFzuGX8deoV2Mlf4XKUuMNg4YRlIVKAib7olzgO1ECXaZAgoE1V4kuwjroNHnAwUXdOFwjV7tE3P+aYcaxFXrZnTz6NXoA/tC1eVvk3CWfTR3gSHL3kwETj~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2462
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809778766168
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Um3ZxaYhP37JzQMK9nPVPQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=Um3ZxaYhP37JzQMK9nPVPQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=E8AE14E687242D7FAFCD791EC5AD6530~-1~YAAQvgplX5OcPsWFAQAA735++QmW6Ov+G+zP2DKsIWuVpdL+Dq4yn225F2yTjVS0bDc7ow3iY1wykQ1tZlhlGeVoN/SgdxZR//RCGzKQuomdM5d2gm3EjPRN+RzTcev53w5ntUU3ep+QflswVSP0JH73bEMjuvRJ94otd0p/sR0v+tMFP01YxEprKhJwHU8aNpt5RCN8efaW+Xr9xG6iJlxibuDhTCtjQCUEY65AljJXgAUKw3w/M6kTqf39SjoZ0P+Cv0EuS40vmO6y6dVo59WbV7VhEd/MzIrniMj5pX6JmJYjigKdsvec8I12K6//FxMipje8RlJ7jCYXU/Bzw7wIn7bG+rmLdx0A6a9J4o5OXUgm5Xux52X+1zceYeubLw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:14 GMT; Max-Age=31536000; Secure
bm_sz=23EF8200C9E12772256C6FF97BAA0BD1~YAAQvgplX5ScPsWFAQAA735++RIRB/IuG1qhEXVQcOa5J2MSD5v1H5XR69RuWxOE/LYQMxsZGQyN2tYEeLCSQrwjJ8WxhFP2ujYOpfNTQR1tfOD8L2/9gGIYE5OHZElLq56TKeg34wzOS1ZE8UT8BZC+jWHb8zL0r5puO+4uaSWsRjPiYLr+pVFoYzBww1KGn91xEN/O0HKynHDK7ZrgjK7Nj+aYMcZmK7HZbKe1fTY55HR+x6suEjGX3AsFV9Qib1TNpobMps+i/tiRhpFQ27y4Be1M64zNXL5EQYLU7K3qRv0MAdhq~3616824~3683138; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2895
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Qw5kib%2fjhNxAlRFxc6ub9g%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=Qw5kib%2fjhNxAlRFxc6ub9g%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=0F862ECACBE610895A55EB84078E59E0~-1~YAAQvgplX5WcPsWFAQAAGYB++QkBS4Rcxom2G7FBFRv19ICFmak585FbNPTJakDkrm0yj2VbzT9fiTyeMM+iRJqppOhB7AhC48WIoQ43w7I4TXi4ojgrrRtG4HnVIzisFbrAjuDJ06uQvuNfdeDtENNfGen+tHnS2n4SIEvcTJmuKcQRQguXvsmjC3rFvmqKIhpMdJRiAAxLkJOEOoKR7lInjykEEcAdjxmcgkJmTLuNFA0vQeilYuSWlu16V6XQJWeBjb48dRTT05Naj8lKKASarOaPC4c14lmciMJ/fRczCJM4QA/HDBYSVo4uGa5NAiEjy0RNPmoUWEFnQXcC4yxORedMz0L1iufogHpW9fxg/gcTxrshrtNCju12qXCd5g==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:15 GMT; Max-Age=31536000; Secure
bm_sz=65A549B7716A6E9BCCD9C25936FF70B6~YAAQvgplX5acPsWFAQAAGYB++RJTdZVw6bzkoEhz8oeMRsLN1P9ONwUxUo17/Iegj+c09KW7smpUh8KivGLrjc+XdEygd+vGi+sbcwLftu8OhwsyK30s3T9mRBECnAl0HwKkiuyA1Lzfab+FgI5Ha5gJzv8a2WsYeBbrjf70t8MiKDgNGRvuFT9+8a/p2C5vrP5WtMOMg+xUNqnF1uV5cD3ORPGC04zQM5aC1NO9FiqSrTlYQCBdq22vGoprqwsd7LFkijTfqHamLqpLbFyVgJHxD58aUexNW0Rmug039uF8YewTF7Ot~4536630~4469573; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:15 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2451
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809779116648
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=sXdzDemC7lihXX9z507R7Q%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=sXdzDemC7lihXX9z507R7Q%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=8DF581693F377777E0D0474D7DF9DB97~-1~YAAQvgplX5ecPsWFAQAAsoB++QlU92dRyjFR6o5/WsT320+j0d+B9hb3tcm2f6WhKXzQkyO8A/ND6f7/qvzNkEADsf0CGPOSLZXVh4qCmIzZzJmKrhGcu7fzZNGUfphCLSjTJEM/YCmmIHjzptxRp6Fy/GQswupun1oPGRxNeaCdrCTrKugBfNpe1dr5YcU5xceGnT+6hcNVyHO0/fuZ1eyO1Yu7AeQopMdYyW14TEHs3RE//U66EXNjfmzxycI4C/x+67+t6cAf1NAk3piGVu+favejcsZ6fEWspoIaOr0yV3zG8/e7nJgeO0lVBvfM+3CEHjdTYxK9Bg0b0rNqylKYxx7+c8dNiVQzIvzF2Tft4E3vk9iAta1rvErv4lg9oA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:15 GMT; Max-Age=31536000; Secure
bm_sz=20E8E035F14A7644246436B2C14427F4~YAAQvgplX5icPsWFAQAAsoB++RIOLEZfKvr8HCJ3wqwIAIncs862FrsuEOAvK3QLd9zuHXvVr2ikwEGQ0um5UhUanKauOhhB2Ir+3DntwqTB59QGQDLsd9UzMYMVEKklmRv4mMB/xWMnUXACsBp9A69M+9zm0SZ7JGX8Hqitb9CEHdAgZTbEWB0X3ryVZjPyEUVskcbARSgRsRZvReI+BFWwUdPHElgCb/1KqvWBwNw4n9XbiZB8KNmt+gVrkO/+0UxRgcTL4u+VAl1TGb0sHuRRqxAiyev461nA7po6mW7QukN0jch3~4536630~4469573; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:15 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2302
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809778766168
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Ej24e+tndAPuuRb8OvDgEw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=Ej24e+tndAPuuRb8OvDgEw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=BC5A01A6FEF95ADD3528833A6DA8F11D~-1~YAAQvgplX5mcPsWFAQAA9YB++QnJeGjf+6IcQsfesDznMpHB9QRDCopljzfdKUNeJQsTIyGLkQ0UfFw4sefi+XoFE7My/jHnD3czPZBNQCUdRA1e6aeWldnX4dz3DGe+9+y0mRzIJt3/UtqWj17r2+ZqaKvboNcxZKwiL+4cJsZXj9VudbjGCW6gEapVuJOjIkAJY4Jmi9wewANSCoPEZAGfMB9vnoSKTwaUh3tlZwATXXa91XVgjKrLrmlXAH41RdJ/HjQ6JecXiIcezI25lRVbIIorCkiXZoMn7B9HgsLG6V8GAHSNeztPjyXjKAEiAOpaoaNWSJdRL5YWPe+XtgSyEI6+cCgYIiLyI/fG+ImUSV8iQs33wskszx7jElLKeA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:15 GMT; Max-Age=31536000; Secure
bm_sz=9F2350629B8BFA5940E07F7E9132D6F1~YAAQvgplX5qcPsWFAQAA9YB++RJ4KIRl4cJnjfeEpnM0O0ID7B400q7ZF6Z7VuS0+bMstL0YlzTz7DR/yDNdtrkVYdK2VP1U5PDnuAlfZVNJr3cFaAQaYYPdplaXtODzMrqqUBWicRtQHalKn9mzSGpD85/1LmWhJ9/aaXB6uMstaA70JQIQ9DDImJmfHf3vWebyrEhhRUV/1Y7go8jyNcRRZW87P1INmEZuYXZD0zi7Fy2ZsmbD6uyEcsSZVz0SBRPF5VhNkU0T/6CR8em2dTIu1oGlsSXHGA78UpdjNL8w5xAW7bTT~4536630~4469573; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:15 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/ay6u?d=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%3D&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=ycffnvnzvyebwvng&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
95.101.10.194200 OK 80 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/ay6u?d=ZW5jZEBZT2UwRjRxcjdFS2ZXT0w4eEM0eW0rbmJWT1JzSnJ3Tk5MZ1JwL25vVjlWUEMzaWMyTFVHRzlOUEE4NlBTUUhCSytUU21XWFF2M2lQOUxGZGNMME1WbVk2NEtwUEpkVHpuaW1CUkZ4SEJzUWpOWFlibHNjdEFGd1JSb0hDeTQzN05MU0RrL09YcHJOZDUxMzBTWW9hQ3VOSzN2R2s2V2ZvWVNvcWtZem5HQjNIcTg3TTdYQlJINGFkeUFaVi84d0hHWVM1RHBSNHJFbWxreXRaY0RhSkZlNVJ4M1NaV1c1OUF6U0k2TWFpK2VBd1NhaFE0cmVCSUxGM1Vmd3dvSDhWTG1MOW5VeGF0elRxWG9OankvQjBiWHpBVVFBeDhJUjB5ME9uY1dMR0ZZMFZTR3V4NGJkajBEOEtWcjVIK0RGdmNyZTZOVDR5d3NIcFVzQ1AzNjgrbWUzc1kreW9TNzhaWWk2UHY3M0kwUUpVeVlHZFVvV21VOWhXcW9GUUVGcWpkUmZyd2FXdDFSSjJNWk9CRVhNcGJFNzVqVE1vOXRNWGx4clU0RDdxY200Z1h3VDFZUGJob3R0OUFUVUZOR0JPZlJUSDdHOXZOLzYxQ2tHVEkwRHUyQ1BYQ0c2blI0UWFMU2xlZEhwUGZZYnJUTzVuVnlhUndZMGl5K2IrUzlYdG1lbVRxSzFoblU5cTNXOUZvTTQzWm4rbmpiOUUzV24vRHUvcXEwTFdvZ0xwc1NCOUFjM29qdXlzQkFBd2NJM1VjSExOcTdKQ3IzMitBK2tYT0p0ZGExaXQxY25WT1RFV2NqKzNMbzRDVWpjeGlzZmorY2lCV1IwYlhlNnRRcWV1SEZqYVZMS1l3RTFhT2xHcDFYVHlXWlQ2NGJCS2psc0xJMGVsbVk0aEwwbEhnUjZUNy93ajFKako1cGd2UnhzakxrVWQySFlyTHlPVTZnWGkxZXoxRTJiRVJrYkMzWFQyTEVhWi84QkxkeExna1dWdHk2eGVZdjhhdjl0c1dMS3R5eno5RFFvZ0hFdzd4YjNsbzdYNWJ3ZnhFL0R5SU1jZysvTkc4OVhXfDlkOGQxYTBkYWQ4ZGVmYjNmZDNlYWM1YWVhY2FiMGVmN2YyNGY3NWZiYTFmMDE5NGExYWM4M2EzMjA4MDNhNzRiMDUzN2E4MDFmZmUzZmY4ZDA4NWY4NDM5NTY1MzQ5NGZiZTM3MTgyZWVjM2I3OGQ0NmYwYTZhNzY5NTgyYjgzYjc0Yzc0MmMxMDU1YzBmZDFjNDA1OTkzMzVhOTM1Y2UwNTU3YzRhODhiMmEzZjAwZDdkOWM5OTBjNGQ4NDFjOTgzOGE0YzM4NGVhNDU1Y2Y5ZDljOTg5YTlmN2ZhNzI4YmVkOWQzNWM4ZmVkNzQ0YjBkMjM0ODQzNTlmMjU1N2IxMjFlOTk0YWFjOWRjMzBhNzJiYjZjMDQ2OTg0M2I2MDlmYzg4ZGJmMmZhYWVjOTM4NWVkMjIyM2M3ZDhhNjYwMzUzYzBjMjg4YzRmMzk2ZTQ5ZTlhNDgzOTM1YmUwZDU1NzA3ZTcxMGUwYzRhZTBhNTdjZmQ4ZmVjNzYxZTQxNDI3NjFlMGU0NmIwMTAyNDcyMWQ4OGRjYjgyZDc4MTAxZDI0ZGQ2YTJiMWQyMDI5NDFlNzY3NDI5OTBjNDZkNzVjMzFlZjU0ZWU3MGMyZmE3MGM3ZWEyNTI3NTVjY2UzM2IyZDQ3YTE2ZWM2NDYyNmFmNzg4ZDc3N2IyODA3MGUwfDAwZWUwYjYyZWNhYWM4OWY%3D&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=ycffnvnzvyebwvng&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 941873e3ea63efba48a3de0406e53390
5d41e9093f7431be65397f5612432ef44c62e9c5
f263e9fbc541835998ee0e2e884bde6f9219a79d9edf72788784bf8f44dc9016
GET /AIDO/ay6u?d=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%3D&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=ycffnvnzvyebwvng&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 80
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 17:48:15 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=yWl7LrCN165NlnulPhde1%2fDC8%2fnkPcXnwtZUgqtk1FQ%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 18:03:15 GMT;Httponly; Secure
_abck=8F1B4BEDB4C39B2DD1E36900B44350E7~-1~YAAQvgplX5ucPsWFAQAA94B++QlFk+aH569dtkkZLyBXXhmtDalCbWPLvE20y/aGlkO7scj9nJWJSlHba0UraIL5pz1g/vkUaDDsneYsyvHcTGeDkfAWwTVe7WzsLFhzlOD+Fjps1VeAU3b2ELXvaHfgzSF4mkf6rG9eCwPlOufHnW5mNR/jl41hEboRkiVI/dV6qI+sTHf4zhVS9rValCjwQ5L/zh9tQ0Q9yswfHmTV1lK3E5BqwITj/AMZPqCYMu94uKTq6PJilbZ5MDix+sRMAT8wkUOSYeGCjpg3i7lUxm/VP/ZCb7kjjvKcqJmiKRBINqIjnoUBN/OvtFXfeNvtW7yJUlds5eyG17Ht978T44DyAQC695gtJEvPKHDUaQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:15 GMT; Max-Age=31536000; Secure
bm_sz=1C5F957A8D83B2F6B0E6EEC3BF25C386~YAAQvgplX5ycPsWFAQAA+IB++RLeJHIvm2Bh14nwRuUKdMrasd6ncq5YkSKsb/HSTTiLBlcI4wLYG4TEU6bbnfaxiZ+Qf4xavzHpalmXqe7jjaUAfGjeChLLhDe7I9VJrcHBxyAthSQzsZSvfGz/l+WrzgrFmy0Y0rNLg0y3MyDOtRHcXUaYpp3cMLJT1Q6jTSbq9LZ4XGpybkJMw1hF9FLikafBXA29c9QxHoyt6kO/3z+cqTPXF/kmiiLkEfD2NYuzKruSaVdFn73xvb6PbFlxj6pftvHD3BKjvk/ptYoecDJ2BjaG~4536630~4469573; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:15 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2958
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=2dMguW9jSp+iGatKiEg3Qg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=2dMguW9jSp+iGatKiEg3Qg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=C5AA98CB0BB57BD6F7EFE9E209F29DB4~-1~YAAQvgplX52cPsWFAQAAAIJ++Qn1miFUc+aCPNQfPb3jPyHjd0bZzDsuCKlon6fyoyCPJCWiZNf1xlTjN8IiQspExjjpxP3y0nYGULcvSKlzT12RS+lBFvkryDtzCdp0h0TQm2iApf+odfueWFfMcOUoGHL6x+MzCNo8RHxfiDDiH0it/DC2Ki1ww8b9Qa4si8mwYjKqxa5ioBPcsQswE60YvvIHr2bdPupZOE4MBuQEOumAHAGiY+N9wY+VHy8H5uO9AtkJiehZtSGNE+7vKF8GlF9jvQsn/ZOOTcibk2Nb5TRJO+C/ETvcM5hsLm0CN5ylQctKtTpdQKgHWdLOuwFUNDJ2fU6H78X+YdiNmcdrSrYP+E1UM1g2kUkx8Ckb7g==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:15 GMT; Max-Age=31536000; Secure
bm_sz=2BF19ABEF790FEFBA87490E09FF167A0~YAAQvgplX56cPsWFAQAAAIJ++RIdLoHf+P2Viwc74zPyV3kuiXkr+zkYi1IVNGI8s+nAuwbnod0EaRwE8D8omxDNfcg+zhCoGE3GAaGTzW2t2VDYtpeEZwafuXFrslEL0DG/nTMjiXUr/wx4iQTdIpT1SVTSlJZZ9qwjnvpYQeGA9f/emABg0splOQWeNLCedS/+ANi9UR3Fqwydc6j2dMDLsjOVn1Iq9vD51E2NxcxY/PJoUk/7q4Qf6udyCOmvxbgWRsBgsY4+8T25wOsDTekhBO4ves1dyTgfVR5+Xki5GWkjiqjG~4536630~4469573; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:15 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2766
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809779116648
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=AMT8+CWyVVZgZMyCG6KOWw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=AMT8+CWyVVZgZMyCG6KOWw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=C995EC5AADF1385194F8E7FD556A987F~-1~YAAQvgplX6CcPsWFAQAApoJ++QkTstOfYfDjE4SJRjsIx3cIpvHoPKMt8ES3Jm10jhX6vXHZlNHZxCi/0JvQPiqHEMnD47G74mzPErSm4DdElVTL83BGll5QBq6L8sZoRaduYMFYYcxqTatQx5pocIczg305dX5W2H3B9MUPro9aU+0XZL37dkgK+kcF1cGZk9iuLxMgklhZGwS3cDpZ85+Sh1hSaSYem/K5cUy2RZhjA0S3c7Lr+rawsCrJhHZbaTKFGGhYoOMYpg/gCxoFY6YI65OkFkFpC4TEXf4MU/RdQSU4wWSJd5gBqeDJtR2sD9dvox5xtJwf/ZZZ9f+9pAwPdK/5SIXAiAnzmFu2iOnEoVmsAP8Tb6gQGHzNdXiJyg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:15 GMT; Max-Age=31536000; Secure
bm_sz=3968EDBE71D8BE8B6A17A6571CCAE171~YAAQvgplX6GcPsWFAQAApoJ++RJtDEEAcD4JrnZBP7HRC2YHS1qQxLyassWH7Zb5luDVRoXp9Wn3XAqivQYCVYK6btmq5U0BqPqNYWbvnGyOgPM64bCK0OwUn5uxbVT2+618RbCcgt9SUx/ypD/xDS8Zmktn41IXkXhWDLM6fsnIQPnG4dBVFA5BvsULQ+kaTkO3XdbUXlv4FnQ6S2lDYJHmg3wTomVlTWYz+fxSHFC27An4FqRVG1qMEGP+CwqCgi9QuItqjtugfdSH0kzO48HN7l8Bv+Soj5WUxhzLbBdsv0ESxdEP~4536630~4469573; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:15 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.194201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.194:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2808
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167492809778766168
Cookie: ndcd=wc1.1.w-729460.1.2.I2L5DrylbHlBEAn9LIhxLw%252C%252C.TjfXNmlbWNGvhx8oGh1Dhyk4x78rndPAyGhgDbkIjBb2SLEMQXWVcBaoqsq2_OXb8deHOvUHofpyFX3Xz5YKjwzDAUxhVu53nsQeIJr6L6PUWPlL6kFdZSCvqUVZIQqVa1ohejRT_0c8Ro7C-ruT4RuSOCReuIsXJ3rn1xN8Z18cO1-VYhEA2DvBXDQ2hJOd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 17:48:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=rYodCfywYOBjmoujNho5lw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=rYodCfywYOBjmoujNho5lw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=BD1C9EF7BC9FA20A335E87E367191FFB~-1~YAAQvgplX6KcPsWFAQAA74J++QkwRb+H33AG1gdhA5GTJKKxwKNTRo6nYQOREMv2E3Ut19D32UrVn3NEeWTB1kQJRBCdQ7oLGEnRRNVUuuXER2vAVmUpUHvxyIAjnHT54kZf01/YSR/7AlGuGnk4DQ3JceKKNQi+ETmMxjoPCydZaNGAyfZBTprMtdeQn+D8RpeLYqtKG09QnCGnGA6MVkT/zGCAVuu5zikszjsAtVcq8aGBVwWuuhlAdkXfxODJBF1XOUzXq+NzSBrXoFcNej37UteSw7yUIbYBxH3fcBR7t06HuNMiI3/hnzNab++1kGnPAhYEErxDL6oKVyjw2QCcRDQDnyOK4WRmw8/SeGW+5LKwb3eLtaLi0XIzVmnLeQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 17:48:15 GMT; Max-Age=31536000; Secure
bm_sz=67568E2B292F6957CDDD89718FF008C1~YAAQvgplX6OcPsWFAQAA74J++RJKhefr5mjP2TVq73vEZHz/4XlF+aSjWeMrr+i14DCBXtCQWFRXla3Ey8XssNoibTU7/vVXGykT02GNi4+bVIakJzQyTCzbmrDo4x2PhfeRZ1HaL/XYmnrRhWiwFB8HMOiGBy8n79N7LpOU29qINNiV7nTHRt8hDcc/3j5BbA3qQQq0XCpR9gYZUZr0CB6daOLXJrGcdK7C6KTGya7G+El9o1qNMQljw6fMY0wYZuhxHcMqjQ7jO9R3Id6yjQzEp01fbsDxBkgQ3AAhe5XD8KLc6tZt~4536630~4469573; Domain=.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 21:48:15 GMT; Max-Age=14400
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4afa01d2ffe17f8378e4c0b5afd4608
f5c7e2137efa07a207427a6b6fe1df541f85ea25
84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yEFlWGi3J14JLA0l2h02VlIqV8opHesKP6GOvfoP5Tp0m7dOYDxIGA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:32 GMT
age: 71327
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2