r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10432
Expires: Sat, 28 Jan 2023 22:54:01 GMT
Date: Sat, 28 Jan 2023 20:00:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9648
Expires: Sat, 28 Jan 2023 22:40:57 GMT
Date: Sat, 28 Jan 2023 20:00:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9648
Expires: Sat, 28 Jan 2023 22:40:57 GMT
Date: Sat, 28 Jan 2023 20:00:09 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 19:35:31 GMT
content-type: application/json
age: 1478
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 20:00:09 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4767
Expires: Sat, 28 Jan 2023 21:19:36 GMT
Date: Sat, 28 Jan 2023 20:00:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1Vjh7yTGHdr453k9VvISLuh/JI4j2YjIQL+BMDSNJoEAOxfY0b5Fwofm9PElCoGGJ4iYTgWEHJs=
x-amz-request-id: RYW9WF2FJ32DW96Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 19:21:05 GMT
age: 2344
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4&session=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4
116.118.50.194200 OK 26 kB URL HTTP/1.1 bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4&session=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4
IP 116.118.50.194:0
ASN #63760 AZDIGI Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (23013), with CRLF line terminators
Hash 36d0e9d85b59b3f842b36f852d468813
1b2c8db1f96c3b1402299656bfcc06d53e59db9c
fa3a71d45298fc9011b5b03c66cd14e4868b3e5184e6245675d5cab99bc1e9fd
Analyzer Verdict Alert openphish Wells Fargo & Company
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
suricata medium ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22
GET /wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4&session=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4 HTTP/1.1
Host: bgitopazdowntown.ddireal.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
set-cookie: PHPSESSID=ia1vqugc5u6m8nbqk7o8o20cea; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
content-length: 25651
date: Sat, 28 Jan 2023 20:00:09 GMT
server: LiteSpeed
connection: Keep-Alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5794
Cache-Control: max-age=134027
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:10 GMT
Etag: "63d4d0b3-1d7"
Expires: Mon, 30 Jan 2023 09:13:57 GMT
Last-Modified: Sat, 28 Jan 2023 07:37:23 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5794
Cache-Control: max-age=134027
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:10 GMT
Etag: "63d4d0b3-1d7"
Expires: Mon, 30 Jan 2023 09:13:57 GMT
Last-Modified: Sat, 28 Jan 2023 07:37:23 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5794
Cache-Control: max-age=134027
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:10 GMT
Etag: "63d4d0b3-1d7"
Expires: Mon, 30 Jan 2023 09:13:57 GMT
Last-Modified: Sat, 28 Jan 2023 07:37:23 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/ga_conversion_async.js
95.101.10.152200 OK 14 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/ga_conversion_async.js
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (35846)
Hash 42c817a7b5f9583b2bc70f742dc950c9
ff75711716f8605860abe551b0235f7194e4348e
881b430ac699f32b3b5234582494d1f4fc0d22be1e6ac797847d66bc5ebc250f
GET /tracking/ga/ga_conversion_async.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-8c31"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 13593
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=f9bIogK2sOn49hgflJuT4w%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5794
Cache-Control: max-age=134027
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:10 GMT
Etag: "63d4d0b3-1d7"
Expires: Mon, 30 Jan 2023 09:13:57 GMT
Last-Modified: Sat, 28 Jan 2023 07:37:23 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
95.101.10.152200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=UA-107148943-1 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Y8DMaIaNFLWslPRcGBo86w%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5794
Cache-Control: max-age=134027
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:10 GMT
Etag: "63d4d0b3-1d7"
Expires: Mon, 30 Jan 2023 09:13:57 GMT
Last-Modified: Sat, 28 Jan 2023 07:37:23 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css
95.101.10.136200 OK 2.0 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (11856), with no line terminators
Hash 425366300c0899e1c2287dd1899c8547
8721ad13af993db12da3f8b7393dc513871bd4b1
de61945d0a98db287e55bfb06cb6ed596d57541ffacda95337b49524ae85fa0a
GET /auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2005
Last-Modified: Wed, 08 Jun 2022 01:32:21 GMT
Vary: Accept-Encoding
ETag: "629ffc25-7d5"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=63e40YsiylbWWdnmYDEKiA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
95.101.10.152200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=DC-2549153 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=am8R5LzpZqVnYN842RkKTQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www10.wellsfargomedia.com/auth/static/images/COB-BOB-IRT-enroll_balloons.jpg
104.110.9.46200 OK 625 kB URL HTTP/2 www10.wellsfargomedia.com/auth/static/images/COB-BOB-IRT-enroll_balloons.jpg
IP 104.110.9.46:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2400x1600, components 3\012- data
Size 625 kB (625433 bytes)
Hash a7beec55acf059f8f2e69b35fd93a671
e3c3d2cc20962e77be670f7f7e9f08d855f9feba
b8325d272c72a041414d9fb349e9d4bca5e7fc8ad66f47a719e491960afa5683
GET /auth/static/images/COB-BOB-IRT-enroll_balloons.jpg HTTP/1.1
Host: www10.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 625433
last-modified: Tue, 24 Jan 2023 19:34:25 GMT
etag: "63d032c1-98b19"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-security-policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
access-control-allow-methods: POST
allow: GET, POST, OPTIONS
accept-ranges: bytes
cache-control: max-age=10368000
expires: Sun, 28 May 2023 20:00:10 GMT
date: Sat, 28 Jan 2023 20:00:10 GMT
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css
95.101.10.136200 OK 16 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 99759237b20cd3c540a9cfb654e6fed0
b2fc0ff3b04906ad729e9e4da97983570c84df9d
c741774a7eb847427dfef76c64b3b05180a059dbc7ca1ec4b35bcbdea2ce9f83
GET /auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 16482
Last-Modified: Wed, 08 Jun 2022 01:32:22 GMT
Vary: Accept-Encoding
ETag: "629ffc26-4062"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=V+rs84VBxu7AWlSMxHVhVQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ytc/ytc.js
95.101.10.152200 OK 5.6 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ytc/ytc.js
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (15032)
Hash c48fe5e804797f0f227c7b840d74a48c
af0ab8fe13f1dc1de7363cfbfc14eacf766a13c2
1a2fbaccd0201b433a5fe36253718facae1b50d23d6af5884279f563a7494c2f
GET /tracking/ytc/ytc.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 15 Jul 2021 21:00:28 GMT
Vary: Accept-Encoding
ETag: W/"60f0a1ec-3ad3"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 5614
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=4iwp+iTao3mSKeVebgLoDA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?id=AW-984436569
95.101.10.152200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?id=AW-984436569
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?id=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=RSogNvIUnyU1Okk2oIVr8A%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 19:49:03 GMT
age: 667
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9132
Expires: Sat, 28 Jan 2023 22:32:22 GMT
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
95.101.10.152200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=mvhpf8%2f6NPv+zRWvUMq3Zw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
95.101.10.136404 Not Found 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Expires: Sat, 28 Jan 2023 20:00:10 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Set-Cookie: DCID=wo9mTsygxpeWnZs6Q8E4vplTMESIQxSbN7dW%2fyF%2fvYlBg7ttbwMrZJ4fbFsYX6WV; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956
95.101.10.152200 OK 5.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2575)
Hash 9b6e37266171f49f824a6e39a413ff6f
142cc5dc8990b0d62bbf391cfdbd10cf4fbb595a
9e08142c6288d72a8448c65148ff9ea288c8958942bb36482f2409f504f3518b
GET /tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 04 Mar 2021 00:30:32 GMT
Vary: Accept-Encoding
ETag: W/"60402a28-50bb"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 5672
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=ypUttcUB6kIG7lYD7yIWjw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514
95.101.10.152200 OK 3.2 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1579)
Hash bda63f460bc390b7b26d7c6bf49bc292
a9e353a34855275090f1812746caed3ecaaaed10
c7d2d5ed51d288030e4f53182ad497193a669255e1c9ab0f539765d0c9189218
GET /tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 28 Oct 2020 21:48:43 GMT
Vary: Accept-Encoding
ETag: W/"5f99e73b-28df"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 3220
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=%2faI8aoSDARj7kUifWr2ivw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941
95.101.10.152200 OK 3.5 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3237)
Hash 366c78f63905a07a51fcf2ca5cb938e6
7d7b1a2eb08c7972faefff64e841ba22ed0e04ee
0c587e2186f735f5ea6625edb02eb6690301eaa6c87fae4ab8f37d93610bcd99
GET /tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-2bba"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 3522
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=o2BEKJb78XkMQYojzgk2SQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/jenny/nd
95.101.10.136200 OK 18 kB URL HTTP/1.1 connect.secure.wellsfargo.com/jenny/nd
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2293)
Hash de66fd5e9207264318300c24f9408d56
f4fde86cab263fdf4e95c3296d3e8265901d05ee
6f5f75f3b019cdb4875d84dbd846d82cdf6e6998c0d111df88f64580cb96a448
GET /jenny/nd HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Vary: accept-encoding
Content-Encoding: gzip
Content-Type: application/javascript;charset=ISO-8859-1
Content-Length: 17978
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Set-Cookie: ADRUM_BTa=R:35|g:745918b8-06df-464c-b173-f9af565b0b7b; Expires=Sat, 28-Jan-2023 20:00:40 GMT; Path=/; Secure
ADRUM_BTa=R:35|g:745918b8-06df-464c-b173-f9af565b0b7b|n:wellsfargo-prod_43732a1d-9afc-4e95-ad69-f4ac78c780a7; Expires=Sat, 28-Jan-2023 20:00:40 GMT; Path=/; Secure
SameSite=None; Expires=Sat, 28-Jan-2023 20:00:40 GMT; Path=/; Secure
ADRUM_BT1=R:35|i:302812; Expires=Sat, 28-Jan-2023 20:00:40 GMT; Path=/; Secure
ADRUM_BT1=R:35|i:302812|e:3; Expires=Sat, 28-Jan-2023 20:00:40 GMT; Path=/; Secure
ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=H70sVfm7M37VVEy6NmyQvkAkLfTE6cvD86dicwfNGTo%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
_abck=EF739037A2B9DF63C5A05564FB1FB18C~-1~YAAQhAplXzjbms6FAQAAWUj3+QmOT9ObfobO1HH1FrFDt1kJ0F6vSr8K/MFguCzULvlBaU4fsL/9yrT1oLiBf5vLziEYg96kMv7xlXTCtUQUpSCba42psZoQFJ8wbsaTROK72HXcwgchp1bhVowKf2WdUPnzpAodBHjoiLllJq1J7+HzEVnv55sXKYYkI7nbKg5rbCftHKyHULv0ZOJHvA24Jnk5SCePmpe9Dg4TCxE3FHbvIJdcvo93jWJL0wZpweU0TBaCuUQkSkMmmnkZoR+x3mvNt+H9gPBUnlGap/G+80ullKgDjLhGHyrFVHo46mef9gB+/b0I3K9ihxiuCVaqDsHx2QHIuDi2yElQeppx1cF+z5IiIQvtJv+IeYOJiA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:10 GMT; Max-Age=31536000; Secure
bm_sz=99F5467E3C2E6D7C15E2D884C9F87F2C~YAAQhAplXznbms6FAQAAWUj3+RI3WxseqUSxRhqGiRWAHs9UX2egikZ0m43m0xdJlmwZcZnpQn9Gcq3fxoUfPNgxBsQC+eG72iR9a8CGBUKE3g2DQXq69BCXIYWOkv+v2sy1BzjTAmO2J0suHS0mipAKn8kpQobCFcUWbNtvJaHXas0UUHtof8ewLg9lFlRoI235Loc/RUt7el/+pFAGMn133D4jJgiI1HkLT+pg27bJzzHyhrjbddN5FtBYB77QMuB5uYOn6ldYYjU1yiSQC/cydaCSQSFDu+LPlVM83gt09b+inAja~4343364~3552563; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:10 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/secure-auth/utag.js
95.101.10.152200 OK 10 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.js
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (7030)
Hash c10dd5cad23023da24e4f6e4470a9dbb
e1ef1048e66b4581b09dbff5556062af908edf05
38951c499a9bb273b9e1ff68cd7847012b22a6d55bbdac4e844e08f287972f73
GET /tracking/secure-auth/utag.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 24 Jan 2023 07:23:58 GMT
Vary: Accept-Encoding
ETag: W/"63cf878e-8485"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 10074
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=nHMcYPKUUtG5ZkT1OrhBvA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/AIDO/glu.js
95.101.10.136200 OK 37 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/glu.js
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash d53f350ee3d5564b96f5c198f2eb9fa4
375e3fe4c688c4e03ddd40d5cf03f1d8a42e65f3
de4f90566f9bf1920af57b5ac7f2a9bc7945ca02433fa842c2074aca0c6f7da7
GET /AIDO/glu.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 37014
Vary: Origin, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=H2EYiWem5FWUQ25CrAoc2WCju0uYaKCKDS4J%2fi8IUmoCjWbpb4PBimyK%2fBn6Gf12; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
push.services.mozilla.com/
54.187.102.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.102.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0u0IItZrAm3TG2EIYO6EIQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IIzSK8mqUp/F2zTibvBrl1Nme/0=
connect.secure.wellsfargo.com/ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23
95.101.10.136200 OK 541 B URL HTTP/1.1 connect.secure.wellsfargo.com/ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (541), with no line terminators
Hash 632076eac4bfcd04efde407509a7774e
965c0977ba0e019bc60c4d3f5eca746582dda810
0c7173339b8cae94e39d9923a982aa325a0db2d738c20237e80096165c006e54
GET /ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 541
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
Vary: Origin,Referer
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Origin: http://bgitopazdowntown.ddireal.vn
Access-Control-Allow-Methods: GET, POST
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Set-Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl; expires=Sun, 28-Jan-2024 20:00:10 GMT; Max-Age=31536000; path=/; domain=.wellsfargo.com; secure; HttpOnly; SameSite=None
DCID=FBlej%2fmkTlHO0NafPfZ3VuUn1eX0LY4vhHmRsVE%2f9tU%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
_abck=6CA6E994DF2E0B8377B4ABAF1DDA3355~-1~YAAQhAplXz3bms6FAQAAn0j3+Qk0BEHGiZdfq/1JW/XAxW5U1/Ng1s69q8kKP7mcX41XktI652lH5tImHsxKj2rWp79LA0fjk/ukLpHkiihRfSWdT+3ss84zDx2jtgHRK2MQP5L+Z4Jk3K5ExE8pvHwdsPp74953eMgAw029bO0PZIhN0T3TVznEKFJ/sR0oNlqGx9Bj/nO6eJBDC8joFj8iII+Og676LVV0t0Dn6UaKUfHbu6qW/s3U/tTqjRD8bx8n8Htg6XpdRJ1Edo9xJmjMTL7IGlR8HCKgraoKJymBKjmvbTZiWUAd+6f7R7/agC/9kL7b7G92VxPZXwG73ZDI1wnpxHmuW4FUHIwHCVceMU2+duAqiJqInKPDquuLkA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:10 GMT; Max-Age=31536000; Secure
bm_sz=A0C50A2A817B6DFC66F8F3D95590D664~YAAQhAplXz7bms6FAQAAn0j3+RKUGkcaTCW/E/+gz4wN3HXU+FfCGXkUKEKboJZMCjvqrtiut6iqKs/ngUM28emcquLvjjYU0GxZ50doqutg13vqzm3VGvWoBI+zYwW4U4uUhZ+A/aIsvFkr9Rq4f0TFzCnsotWIhu7NLWKwOTXsOx1TrWZSlXME9dr8YYzHo8hRsGJgQusYyIJD3OPj222fdq9NqymtCPjOIgxSVEtRKlNTzf2gV8/hSG4W1oddKZVYAevwf186zHudyISp0tJ37JR5Xnk79UVnNb8BGAfNQlykv4q+~4343364~3552563; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:10 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106
95.101.10.152200 OK 2.4 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3223)
Hash 44449282135ec65f8a30f2d0019559bc
b5345b6412524b284661df58083cf4a69137bf07
4274fe65bf4837e788240c5554ea146522b4f639497f86f0ebad1cfdff13e71b
GET /tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 22 Sep 2022 20:06:42 GMT
Vary: Accept-Encoding
ETag: W/"632cc052-1c52"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2392
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=ww8ZRyipqj7V9a7iUIbhCw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050
95.101.10.152200 OK 1.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1142)
Hash 8ef348be98d33d036c76772130429a0f
0ff80908b030a9d097cf1638dd903f315791c7c5
64c81f54226a9628d8944de4a31944b810f28de5db7844bfada1ee6e18c2fb8a
GET /tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-ebc"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1682
Date: Sat, 28 Jan 2023 20:00:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=J2ut5gZ%2fwi96o1URF4NXlw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836
95.101.10.152200 OK 2.2 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1022)
Hash a14fd9149c74dc560cbb2b19a945ef73
feb2bb1497fdf3810f823e09124f310ac3dfe9e0
314c74f80c31e727c06da493e10e9dba8cc3a80f2eb07d06463c486a3ba10ffe
GET /tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 03 Dec 2020 23:04:06 GMT
Vary: Accept-Encoding
ETag: W/"5fc96ee6-15f9"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2186
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=d7pANhOrxhLS0LIouW0Mmg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/AIDO/try.js
95.101.10.136200 OK 39 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/try.js
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2e10c1743badfeb3818cd5b8002f40cf
d0130c72404d7b597c06be6e4236d75fc5ddbfef
6e7d30811fd5b76ce6051acdb141b9e1309ebb643818cc4fc094706756581196
GET /AIDO/try.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 39302
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=Ff6nUF6zkg7nXk9bAUb4ms5CzlL0BY38wUN3AVF5YoUQsv9MGTYvHo55EXmG+ObV; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjglMjIlMkMlMjJkYXRhJTIyJTNBJTdCJTIyY2lkJTIyJTNBJTIyOCUyMiUyQyUyMnUlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlMkMlMjJyJTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIycGlkJTIyJTNBNDQ3OTI0NzcwJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTElMkMlMjJ0cyUyMiUzQTE2NTYzMjkyMDYwNjAlMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmxvZ2luJTIyJTdEJTJDJTIycmFuZCUyMiUzQTQ3Nzg4JTdEJTdEJTVE&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 141 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 298116ef31918c640958e07df69b9220
01b2572bf26573639fcee3b305579688b293f285
a830d0edb2a0425d62b04c2f2833ad08a47735bc655cab5b29b27d3b522639fb
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjglMjIlMkMlMjJkYXRhJTIyJTNBJTdCJTIyY2lkJTIyJTNBJTIyOCUyMiUyQyUyMnUlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlMkMlMjJyJTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIycGlkJTIyJTNBNDQ3OTI0NzcwJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTElMkMlMjJ0cyUyMiUzQTE2NTYzMjkyMDYwNjAlMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmxvZ2luJTIyJTdEJTJDJTIycmFuZCUyMiUzQTQ3Nzg4JTdEJTdEJTVE&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 141
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=9PFAVg3hPDuFcicGWYHiQdOMsjFeaNQ0yrOUfJ%2fH%2fS0a3%2fUrf69Y78N7+FgC2zJ%2f; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
_abck=9B6E220A53797B7FA32DE2491BF15D68~-1~YAAQhAplX0Pbms6FAQAAjEn3+Ql8L26AEWac3E1C5xQl7xJB3yBjZXOF3ilG05m2GpWt8zLoYZH1472aun54t5BNpnKJW0eEQ8Z0vrVlJ0BGeKBMH5EWyrglOTqAM3vBIIxizm9hggR4I2rwS6gXRXDIwYFILD3DGtmwJ/harsyLMcoQvviVgRGE3sLLCxT78jjoGh9wCPgqN+Qp8dizgpFN5P7A+9pWB2xIlLy0QZu1+ClSv1fDDxqRQYZma1TF5KlMNHAUUsxtOiNpfyiDRlf6usENJuXN0wURcvSIKLcb/xafJHn93iMfiVf21bTcbJE5qvC10R47mCxeEXO/uDCU4TiGjkppEBgdCU+Jiu+Yl6hAkQv9szjBCZ4O/JBafw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=C24457A2A3FB9B2E0C5C73AD1B3196CC~YAAQhAplX0Tbms6FAQAAjEn3+RKWo0UQb0G8KOdtrosUnnWqaAMXyKe+IzlySvq/xM9UThOvVQoRs+ZgZ/BQ8K56SxxbcZBouCxIElMrKZ5l2xqrXZstT6R8amhe84vedfctEVjbIkUxFYvAvyd7XMTXZF54HbgWFWm2UAyOd5bN6EFQOb1sBghrYt6ZvcxFKSkO82U8ieppL8oPYhxewe0aJ0i3Zylsf+4Wv0mqLpC7Hroa0bja5IdfhxF3G2B+MI4McKPusGXzyfUN9cSJq7VdSELqz/eyCYQ3gqiRNpO0YsEq/zBl~4343364~3552563; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:10 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 142 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash d440dfdb1c750df6d9d8354b165b0f61
7fc609372c7288846bf34e1e424fbc8c9d3a8897
db27897282a9c24bf21eeb7cebabf3cc9feec5d7d7676498f7809e632a1a6502
GET /AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 142
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=HTaS75Y1oPZBzUmjyFo3SJsPmKu5Fm9cKTdE%2f0VyRag%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
_abck=5D652AE505172B6DA4F50A40DA32016D~-1~YAAQhAplX0Xbms6FAQAA3kn3+QkrL3wUgbvOLMZh4Z1vP5kT8Dk8cnnAH0z7QBlD/RoJnRkFtClTnPixNcftW4Szk3zKgDIWac1YOZ/wBNxL1nrFeKmPXxVF5x11v39dMsGxf2zAePvVRIxrixk7whQQe5nezpfThHoLdtENjQBNpt+uniPUEcgTLjteMXxmhtGUq7I3s4QwnO9cPwMoSw+S66SkAA6ixiNtvbkLlMiRH+C9GYKADH/vkFQa6ICJgEyByAjozatvtXgK7kUT3b8113anCkeALXA3UlMVchpTKydDbMy6fIfECq9dxBJjfIcmSJxrUasgS554YbHeOSDaULZWWi0TdSZvnMQrJ7Jt/C0whfMAqZ7mz9e++buiYw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=17C7512CE60400BC4D94545505798E60~YAAQhAplX0bbms6FAQAA3kn3+RJg7BzTVV/ivnP1npg7eqbbjFLxi4KjI9XJER7MArEfQloYVnRx3b7Dceekvw7mvg7zCjg3q6Oo7iGbWBOf8iB9gNi8/glBQnB9fN7y593RL91UY8ZMIguCj3OSk2DFT8Nr8JGUIPeVXIGW7SYULzRJMWnCj54JeSl60cjv4VH5v0SMtUAuaOg6GA5nHAVFy7+2qKL00TsxX4DDWlOa0OTEt7cDl+LjeCwddQTtpL7ananir9kslMw0u7PiowRR9bx5kw8r8bIcig4hQX9FDgqcy2WN~4343364~3552563; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:10 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/PIDO/pic.js?r=0.8426445611056853
95.101.10.136200 OK 50 kB URL HTTP/1.1 connect.secure.wellsfargo.com/PIDO/pic.js?r=0.8426445611056853
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85b8e8467667d9c27d758cf6ffe0df32
4518f4c9b7e46be26fcb24532f8efc3dfb025c06
d722fa80ec0ec2ef9df926193d61d78f038ca742bafc9b70349c657329fb8757
GET /PIDO/pic.js?r=0.8426445611056853 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 50045
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=3k%2fN19yyHtXVkFuGDCb4ZXJfX+lbcG5XpbW78MnOnX8%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0EyJTJDJTIydHMlMjIlM0ExNjU2MzI5MjI2NTczJTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E5MTE1MDclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 9016e364876d628a986536df14539739
384ee97192494d2adc3f12e5fe906f772da9d89d
db341d5481f4f4821d615925d8832d4670c0be64ec82a973bbbb692b8ae1b97f
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=aSjKcyZGyPFzM72zZHacG2ku3nLmkaoIw1Oxf1ygrAI2ELmQ5FcdUFAuHrXIEAFm; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=1E680F29200BB247E73D23E22789FB12~-1~YAAQhAplX0vbms6FAQAAZkr3+QlC3GebnRZmcn06gZZP4HncEqAgjqH1SUJ3D0wakXw4BDLB8FK3tUja+JZuN/AP0ZjUvHybIp6B3ebyCOXUTTZYzfs06PVcgJMgJwgB7iSH/z/VbpEr/amwnv7z5K1357dNrbFUmWi/2Oc2HvcxKVDPQUG+Pcc5038UqKIAFjF0llKCDYyX00k2diRntOt8mHsL/+CBoVaZjGAc6HEMCOSpLvRdNpQy89Y8f7A+zCRVOQ1XA2PGFGtKNI3S1mdxy3/LtcbR0NiNVd4PjeDQW4DTv+iJZ9YPUw+ZAFIH28xMoPYUzhPpgb+0yewga3Putg7POkoXfE2lxhnuCyZgJNGQBIdpLSMU+HDmniGcZg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=A26BF82D72CA0A3F9444EBF37B235204~YAAQhAplX0zbms6FAQAAZkr3+RL2I68CYZzNdyHU+W9Ic2i7Osd2CfL9CpEaXLkssMEypoAHlbrPTDftLCzjeC5GaV8Ox9OyTetiHA01FaweitAD5TbU4lE+I3yIzxipZNvUekTR1rYsTNQ8Vi+TBdu5npT+HeKrn7DFTWdKWhmOCKk7pv9DddtRhYX7BuGlbSui8psTF7ZnOOl9TEsgorqRNWttO1DYrXHNp3fQGEQXqQsmNl9QpeKWnO+xyefyJCyNitxPvYdf8elJahvyLGE5tCpXkXscUAy8MwTAYyExQVyscL7b~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 132 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 6640c11d819438d65ab88452dc11d712
78ff87493789f855231f9ad1f95c088aa3c6774c
61a097bc2513efb34dee32ba60be8df34a5e2d3f9f833065c47fe18b89907662
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 132
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=HdKt+o7WV2LxtC5sCIGViiJt9ZDjW0o7MS5zasJo8vk%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=910672FA5306200311433B26EFD10F2A~-1~YAAQhAplX1Dbms6FAQAAsUr3+QlqV85uowmh4jD2CHF2N5IWEMJIlZrriVYGDu+w0szyqDqaKMz7VtKTLGOLZLnU4PaU4zB/6BhesYnN5RFxckbmdYUkyjzLmb14tmNJloayvV+HvxPs1e/+vSfelY4gPgpUu0to+WK+06cE7fBzrIlbYpDbG3yUMM66jDAPKOcpSxTfImgmUxh5aaIXVNPRDfyWkMnyytI93JDwOM9+pbUsOF+e2R4GKSM8gjhBbYu2Quu1GpS2HHoT+FKcAqbbc5KA8gFW4iZG/Tyzc3MZfpMHF4DMCtuH5M62JWVlba1E5keuzyiCB1VXGyhPzhkd1L/qE+1dThcYr8b8kxSWyWr7LCEY9zj3As5VSz9NKw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=5CDD37B1F9289BD71A159D89B0ACE80D~YAAQhAplX1Hbms6FAQAAsUr3+RJJvYtMF/OxT5KkOJNf99pEv82sFTQR7ozg/7Yp3oXLZq0XrsZI3dYeQwYQoEgAWphJFAfx8jO4/QuD4lIU/LjfW8UejSPIAOcQ6ZUHszyipPoXUFq0VhLN0e4jXXDXK8QkPs5gyCeGizuXEX7dReeWrOWIvJ/pgHf1wS7X8EqdKhg+N8E0AKKce1ATvYgfCb2xkX5/T2CvraIgzflqCwAPy9go8jPBL3vPy/A6xXQfatxPO3A4wvY6JVVB06x80pTFork19ovianm5JD2P72otqoDF~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0EzJTJDJTIydHMlMjIlM0ExNjU2MzI5MzA2NTIyJTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E0NDg2NTclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0EzJTJDJTIydHMlMjIlM0ExNjU2MzI5MzA2NTIyJTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E0NDg2NTclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 3fb642baca4beafb486dba7e8837e68c
9ebcecc9fb7bf6a20ca549c9b28814d921f46480
05413f45f5993fb5a248861440bb0ef62b51aabeb798c6bc82a33f3e8659b866
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=gw17v+AM6HAnxlQoi0LVUzs689S+YfKfQx%2f0ktl190Q%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=C42DCAD316640C80872FE79FDD43BC52~-1~YAAQhAplX1Pbms6FAQAAzEr3+Qnd+1zhExtVDt3JFLJvXY/zKYnbs6DQfeFmOXv4ckjgSJjZXNaCQufEz9YorEHLjOv7SAaIrxJ/Fu9yspn6Xh0oKfAy5VIzZgWmwS62RIH5LHFbt1P2gavjMNszzWm+CgLT5rOZP+iUdMqLduSpaUw5wqe2XMgLrapGTBEgwCkI9tZgkEkiN1PMjo8k7b3qgClvf4RKqkdBclPiNKR9ky9m8hoJdZbSBTyghNd8FrGJiEVuv0CQ16z3Tdp66VSCGojgFuf07nvSleu48tsQfNkh5NGNXiTi46BHca4VT1Pg0Wy4szksxKpkUStProIYSBnkhptvZElCHq59a2nf+o6tbA9YliY78RKEKW5vfQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=4848F493C506968B05B726374E82BC76~YAAQhAplX1Tbms6FAQAAzEr3+RJ/hdzIg2vJobrRlFTcU9stsnSWZgXSIz+uytpsBL+8EzZGATv1vkUH2RUaBiUfXVcpMcM9m4+3sCxJk8vVb0HH51VxPEhY+eSaL3aoD0IuFGIbbqd8lMfG06z9cNQu3cPtZN8ZcP77lp1aQwHkZuoC0r9KsRT4ybDP3uBPRCus9zvgRl06RcxU5V8a4X3rdVPjqJqWuEyQcLzrzvkv9qw1I8tA+/TNJa2A19cyrmqolWKcSTeQVCcsyN8z1mC24KO7q88elDW+ouKaYfse063ZUj/x~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 8ad709040df77d1b3925d20c932f68d0
d9683a5555006e1b8e5f80cef809be86fb22a3b0
bd320a1a5b4aa6e2026cb92ddd25306bbb52efcb74837ad3e9958fec2643a5c5
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=d8NXdtJTu0mFic0T6raGvOiZKZYwfkBspRQF0snyQb5N0bhvCBU2%2fhc7doQaa0sY; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=3AB59D7BF906E8D36CDCAF0827E925FC~-1~YAAQhAplX1bbms6FAQAATUv3+QmQjfnAPGpKf2n3VeAJmamS82WVr9mhemEMNvqjehm2tZzNqDi2FXouBgwZj3DDbSUEEnfMuIAyAiIAXORNfN1Y0knob/U/tnt0bAA1MfpB4LMmzJPgqrUg5VQ7YKQk5agJg/icR9TBGKQNxmNwFBe0CsBp+u/WPZnik/DvYXWw6Lv0qDx/yJmm26M3B05u2qQyQ6ZSJ5rFgzsW3Uo359Xo/8g5r/HIv6VV5BBPWsB3JWnzQ7oAbyZzOyh8BOCjlZ5aTXrMB3rxtVqACXVTobjchJ4/SRmKyS7LaBm2Ek/MMl5B7ABbBwwAc5LUfpAOAQkkk++3y5zrFCf+YhtEU/Jly29cdmog49BBFFJv1Q==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=ED82EF0F706F9542FBD6400380BB3B74~YAAQhAplX1fbms6FAQAATUv3+RLRnNgY2bd79GdY9qIy9fPZfCGM9EvB9LiDPXXaG4jOtmUPN7xtBukz4nFgHpIMzu79a683ybMQljIk6sq/1N6feHflX+sg9v9LDhAZAlhBVAMfHqM0dC8d3m4NCHSu35itTr5pIo1UtPRJ/nakTNkM/92Hav/SH8Z49o5Kc+KWTE5pHclwRwHjNlA0jVtIc+Ri/MMfqXI244EGO3z41A8YUsovzdzQVeeMJhHoC7orr7s9rXcraurd5UZZzRK/uvWIMcWU0JM+K0eDMqWwZRmGDgv5~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/trx.js
95.101.10.136200 OK 54 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/trx.js
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash e2ec28066df3e578ed1f2292838c23b2
41bb396cc664f84355f0bbde1094138746783933
e2567d2dacec85aa7d4983484f51f237b4ce9ed59abe9a8943833afcd9b60289
GET /AIDO/trx.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 53988
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=j2Ud35fjMVyCs5qFzl0o%2fxb66KHKkglQjBagfGWVSqk%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:10 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 4c084420e659f4976b726b2eb521b529
5eca194e2f0fde85c8a6c26a93cbb8db1f8b4468
7da443f39799d3ff07e43890054b7888b5f3c2d91b68b9e23a4cc4fa5e037701
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=uPSFnlJVMqbpqL0Mewa1150rNe%2fmDtugUWI2nMayR6Q%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=458260E81AEA8136803793812941E2ED~-1~YAAQhAplX1jbms6FAQAAd0v3+QkwOMkJaFqZLGZ/O6D51HjBMGXnJBBXj8u2NWzNN8ZDTuZOOWqj0SDe5O3MND823dXEbeonphwaZZuvyuxcfIAscdf9qKwvi6MhLti3Y0i5yKX0pDmuDHJPo0uJm3QA55N0PrMIASaX+VpxjHzMC2d5QDvc9GNiqlj2F7YxL9bM1WpB/m5MPq/qJKKhsySqgHPZ8BxrP6ADVfA5XqLmwyIGFuj0u5vb4BWx2dRz0CHa9r+5fzzVH7uHou9QJXmMy8MyVZD1u43xBoG0JbXr2cooES53beQz1yW6d0WToPi2RAioU5xxXrqUwXs4JKyMqRbGIwB3/HMp7NCRj0lBsD1lbnJ5eL4yBF64txHWMw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=CE26887FC989A11661362121EFF90C87~YAAQhAplX1nbms6FAQAAd0v3+RKe1MvGNv4d4a015h9c3RCevN7iM2M3N1GkmGVtgu8fh4E+v9RnI9uq5t+LxLTYFt2nsvQhVFa9KfcdO6IsGP0Dhn+6cRpC6tSgmLrzrVkVsHLSe5pHr+nimwqPv2tl9hZ6c5kFHUcOhy4vznJwX0x/qw/fbhZktdkbH5X2wli8iGfThiWVDg+EpXeWj+z+Zuj4GVRyGjX2Np1OjbGZAzJLRJBthEPT5qsxKqOpUWnkS5OumiXOTdiQjeOEf+NkVzMt91+BssLAJj/aEiFVMVVGKgaX~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 709a15ebc1d091c85bb23e4c8a3591b0
9379a41b5ac7c8a18e0f5c92041d0be02112e5ee
20b90132f5e2d51fe8edeaff395c1f75127775d81cf65b33a863eb2ed95edf51
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=j4KmEaeukUWSxLkCmuO6wpBeCJDJLZm5lmRThg+8NHx%2fMAxdgfLwKDthAZS643CL; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=4C170F70DBDE747741BEE1E4B9E2CDDE~-1~YAAQhAplX1rbms6FAQAAjUv3+QljgvnBjEQzmeGAbiU3Fk8G0C4mtIpJP33fIH7ENLtKU+rLOcDUsS/5vbPc+S/x7HkmxbfpImvPW3VsTsPiZyjLwb/WV9/HEmDcvaRuezKfjJotkV9MWZxiR+8SoVzgh+nOTnA3M4vK+1E9IYNzDgaXnq9zjNAvX9h5KSF8Dc0e/Vg2AQIX/tZBLaYaYL61BjY2IevNvYbOFxJ7S0w9PQazNY/LDRWzeuf16mqxO3qQ6aNrvo8JgIhmmq1bRBYLooFQ+7g85mi1C1kx/b1jQ5hJqQf6PsUpk0g8OZD/Z4SLYIs6AtRhDkdmv+DwgsqguC9pCG2LINoAUMf2lWmBEpQXTDy1+qHZ/Usw145byg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=F690A829F9D60FDDCB595659833BF0D9~YAAQhAplX1vbms6FAQAAjUv3+RLEpCNxEfhsz3y3TNYVThOr4cxYWmMx1CnyP5aSTdeJ4V4IgDtz8+sc7snCQY7jSTLBmfW1Ap+LXMpxkmUN7hZGcTGmmeaMA3hzxapVIrjJBeksnF9JyXYBZ6C/to0Ctahuoeshj5z/7BVx4XX4lN6PQgySEWfsD5WbhQvf8Ul0u6eoFCOttR751QFTkcMRdnygLYYKfM99lN6SzKC1E1RHzsJNg07raDEOv4tOD44s3Zg2ybUAN/PJK/+S6Qftl4lLZ99YF5Jd1gFou9L2SdZYrucB~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0E4JTJDJTIydHMlMjIlM0ExNjU2MzI5NTA3NTAxJTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E5MzYxNCU3RCU3RCU1RA%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash f5fba74b923f85e25a1ea3f6a4fc49f5
fe6e99fad946990ba139029a763f9f37a16cd65d
91e4378e57724619356caa4ca5a9af2c2c668b503f7b2113b1a8eaee7254db2a
GET /AIDO/vyHb?d=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%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=M9UGixJk7yRqHb8CLtJUo3WWv1CGYjrFixhHvioOuoU%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=09B4CB0C321E3366ADC4EE5E663C213E~-1~YAAQhAplX13bms6FAQAACkz3+QmuBcplBdx/msg+awZAKRODugOWCPCtT2WU7wnVKr/y89OiX09sfYqDvLEd97lUAL5D9GkAg2FG6qvHXm2t4OL/Fu8B0kVA+Q/WkJoAH6ZzOKiKEjF1iva/FXAptX2P+YgTveSSuu767VbmPPdB6EyhAiQmf41p8uE1MYOPpopn/eSQsDX0KMF++UHSIOzcqsAHyn6O9BbI9ASu35vno5vyZM6RDz8plcGIHbW3+oqDNYcDhm0rsb8Y9UlizNuKqHYCtCq7fLwAV9zi9zvrcwtjTQhoVwJtxuIA+J+eAEjrlv5ZhJac4vDhv1RPUB6bx2jUl7zDUyCSKJMUCNB0zgaG03UjeEvntrZxy71i4g==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=72FCA8C16ACA640BD7805F663BA23851~YAAQhAplX17bms6FAQAACkz3+RL5JxBVfoLD8G2mffnvLYtgcDzrzZoHwOs2J6kCF0I3jmjnjaCEcJrGrF+Wq4HvBwgJpxJTPnsJYIOTePtWgftYqp7gXdHh9NgTF09mTChViOUTVWqBCL5aeeejxUDfE4LnjxVyOyHSel3kR1Z5drikBaJOAv+aHjjqsm74hrDEa+bSZNygmXy2HmDntO9bpD+pAvKgcoc9oFQrkdAMSVJ3VirqZP0+PvwmRRmdTIpqhPIIOnYBh9iBDuMkkmObXq5ic5/kB3Ars3XzVK1fA2h+wubd~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0E3JTJDJTIydHMlMjIlM0ExNjU2MzI5NDI3OTQ0JTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E0OTExNDclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 939a7800b78e10fa645a54a5ccab0b45
d341561d6b1c49fe39fdbb2e249baa36139c7f17
43091c732a9e1f1b0e59c674512e6b66265eec2beff0e764396f1e08e1941eec
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0E3JTJDJTIydHMlMjIlM0ExNjU2MzI5NDI3OTQ0JTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E0OTExNDclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=dZpTnAaeYsdeNdXqodB2f7C+U5vy14WjEpog8Ja+BI0%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=A7DFC173B8BD633865E9C80488794F23~-1~YAAQhAplX2Dbms6FAQAAF0z3+Qnl7jPq5nLjqqcxehm83a+qMnR2ZAUUxmOynBimu3xLJx7J9+J0OZhigtcplmAr2d4H5yzOkkaoAY+IFQQKupuG9ExcXSPCwydz5SFHI1jHf0MMLFGkBfj4cuR2vjdgBRAWvY04p9h3QtUpknl1uO3cHUPDHOR1Zidyhu1hGpozrI/CHt5ogdezb24ImM2+NhfNof6Yg3huWpKrp7Ev0j87K0PlixghO/YK+cCWqW65khSz/jh65OLSyjbTEknxNSs4uCpQyGdUHLlOEbSpn36l8ZAGavyLd48fLbolAeV2+fioeacpCsVDSVK14v1AyE00tJvoXx38AQp1mzdtJqOxJWNFRRi0hH8dzSrm8w==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=7A343369942BFDE6766DA7E05DFD6182~YAAQhAplX2Hbms6FAQAAF0z3+RLAGTG3DI7q9fB0E1amoMTc0uUlXu9UVVBqwVt/RdUpAsHJ10o6kV2QERBDMMZi+nSv/3HxLrE4LOQMbm5ABQbFO9FLCRfAqOnOa3A+D2Z3f+k6HWZwD6qi1gF/CuAmKBRpa+QFHOTIzCUbSBWqVkmvHswyaydmOa1UGbOtBfS8GzYyvBg7YUJfyOlatrmrK91Q87mWHW8zwGdSRro2hgGR1Yftq27WqukdBwYlCahqNBHbg240XTJZs/8oqlNn4e17X5QcO8PvB9Tx4fDtuM9S0+lk~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t=
95.101.10.152200 OK 43 B URL HTTP/1.1 static.wellsfargo.com/tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t=
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t= HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Last-Modified: Thu, 16 Jan 2020 21:55:22 GMT
ETag: "5e20dbca-2b"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
$host: wellsfargo.com
Cache-Control: max-age=3600
Accept-Ranges: bytes
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: DCID=NrPKwoiORYImWUqj5GoekrMrtpldQNZ2cXfBjibLocJgXeG2CIq+YBSpvtbcc5nE; Domain=static.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash c9fd96040db248c257fcf72f35154c50
4017e7309e5d6c02aab4f5b9ceaafc4ffcad6445
18abcbfd674a00d68a13975ada85e901f4ee842ad94c06eef35ef13e071e19c8
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=UN7tHMa01NTg0aU7LaTAuziIr++elH27Dxj+dpSNn48GYGmLFpVGudX8issseif%2f; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=8927BA22C7E718A0AC74D126585F31F3~-1~YAAQhAplX2Tbms6FAQAAY0z3+Qkge2yOgKAokpZPtDx1dOxCfy40IbA+sdK5WjgqKllB1DdbOhTriFsA5qAmqnR/4bkW0J/GY7FgEvzGJewzMKDOFqqazf2Q82N3kEdcSChB1fct3hUsUDpe0m7dJMbuzVCbuSp9q0ptbxzK5NnupXqli1rdUfa6xqH7NLTirtxfjiuNVr2GjSr+cCn6SXyruePfaxtaM64syvHM0wnFwsXRKTb8wMmP9ACGFOglHfTLtvWNhTRLs/2jKsjiEBaO4vcrM77uWyrqu8qEM9ddMoH8jvUHaY39gcZ32fn/sPjmJeK80FGIjHWGCPpB8+ywMsq4ltc5FsfftKCg7H70QEYfZD5A+mG1oo9VK1ahqg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=FE9484E6AF06545944F14296BEE4BBC1~YAAQhAplX2Xbms6FAQAAY0z3+RIDMF3X/sA8JwFSlgK2ae9Y5DG9TN1JpobJCIpQ6w7qrF9e8NMONAF+Jvhm5CuAAO04rJ2r2U4nOavWZOcdNi0uakGOeOa0EiO9jBaOonHmdBl/mF5II578dAGfh5nMlx7tO1TCGnvEbxcRt2S3StKiLX4+XE7f0OK9+8gND3gnyqWnfOslNoAHedoXtj2q4/iZEJiZMPGO01p3rp6Yu9XGEBB+0vRZhGUZ+tBhSEVwsyRvMD+4kmeTY/cZ39QH7KlGXMFFqNvAd8xqaHKqFnINt1P1~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0ExMiUyQyUyMnRzJTIyJTNBMTY1NjMyOTY4NzIyMiUyQyUyMnQlMjIlM0ElN0IlMjJ0JTIyJTNBJTIybG9naW4lMjIlN0QlMkMlMjJyYW5kJTIyJTNBNjc0MDk1JTdEJTdEJTVE&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 5a88f00e656e05a9d289a05506845a88
9bec04b14b0f2d7fec608f60d4fc43dbbd3aacd1
fe5a6f8b61d3b055e92d347163a4715675351eaa6393364341e823d66406b861
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0ExMiUyQyUyMnRzJTIyJTNBMTY1NjMyOTY4NzIyMiUyQyUyMnQlMjIlM0ElN0IlMjJ0JTIyJTNBJTIybG9naW4lMjIlN0QlMkMlMjJyYW5kJTIyJTNBNjc0MDk1JTdEJTdEJTVE&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=%2fJdNXAISA4c86LpXBg8yOcCF413jGGNRNaTjkezY%2fbFamAYX4Jq8TGEi5T4zTOin; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=6A61B1A742AA4771B6C4ADDCEEB9CEB6~-1~YAAQhAplX2bbms6FAQAAbUz3+QlQYJ2tmLMLPpzIG/6imEr3S8JylzK99udQ5wdfmz6jLkrf5RMwRbD7uKWdflspRnnz6abgygS+c8sbfHhDJGgHFhBDcx7effOdzBrY2iL8FDyJVQyqYiLJ189HeIPb0Pq0cwiJqs1tdr2tS0APtvJcxvliasZOXSPkKs9PPPdOjXtRhTkY32Z3hmHD0+sQnPg3x3JKusnaFk6fBom4bLhJyXlb2Omj0sQeeaXGWpM+inlzJhGg0qSfPAb9rU11veq1C7egZ8x3wbiBBl1wIyl6L+Sadne+9X1/tznirHXeJAgyx5195Jl/cz8LxJXhv5IWU143zTDPpcimCeZ+NR3Yj5klV30NABfF3uPm1A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=EB56E992707B3B80A042965C0B8BCEC4~YAAQhAplX2fbms6FAQAAbUz3+RLoyH6S1GHfhMUZkUZeKsbi4RwaThC0Kuz4K2m1rLeQihnKyz9vEULMsk8qh3OtVQTZT1Jje2o+edW7JyQ3xBsIHfDmlQKxKOAY+whLkzedQhmVIciCuHRW+525ksuog7Q1CjyjmXbiByHNwYeyeVdSBlZ0oQl7yM6TyoYQy2EO6KYOqg7UO4fpj3YsgUc254RxPrMmWLBZ+3bEkrgei86sH9mK809K1sBGU55byOC8Kc+sOw8EkZMQuazNuNWMnNqCb4v7x8AiS/0G4XB9LAaOHtV9~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2
96.6.19.156200 OK 22 kB URL HTTP/2 www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2
IP 96.6.19.156:0
File type Web Open Font Format (Version 2), TrueType, length 22424, version 1.13107\012- data
Hash 0a1639ebe9fab396657a62aa5233c832
9b58164729ad918dd7255e4856f9da7f3a90bfde
631f3b6267a831a8d67c45e480b5d5a2601f10ff8708bcf3a45a41b377a129cc
GET /wfui/css/fonts/wellsfargosans-rg.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: KONICHIWA/2.0
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5798-582d133e56280"
accept-ranges: bytes
content-length: 22424
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-type: font/woff2
cache-control: max-age=31536000
expires: Sun, 28 Jan 2024 20:00:11 GMT
date: Sat, 28 Jan 2023 20:00:11 GMT
X-Firefox-Spdy: h2
www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2
96.6.19.156200 OK 23 kB URL HTTP/2 www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2
IP 96.6.19.156:0
File type Web Open Font Format (Version 2), TrueType, length 22600, version 1.13107\012- data
Hash 83df8749c013f13019fa8e0912041759
2bbffcf012a59e47661c0a37edda0fc772992ae7
ab9d8c97b35ed86b6224aca911aa304a0d7dbcbd28e00a4c6585b96e28ed30ba
GET /wfui/css/fonts/wellsfargosans-sbd.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: KONICHIWA/2.0
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5848-582d133e56280"
accept-ranges: bytes
content-length: 22600
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-type: font/woff2
cache-control: max-age=31536000
expires: Sun, 28 Jan 2024 20:00:11 GMT
date: Sat, 28 Jan 2023 20:00:11 GMT
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 92d8957f603ef5f37b10629144403d1f
04a23040c0d713c3e23fe9d84b7c151d81ebe89b
ef4215a4282e51c566934c7b8f4a910da16a539c29292d69e536ff06ddbddde9
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=2DN7HYCcNTo7iucedIBwaNcXZo%2fz8xPvR2K0xsyKmoU%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=1945E0A837C37038FE1C7EA4D19E8B56~-1~YAAQhAplX2jbms6FAQAAikz3+QkK7EDaM/IUNkaCRHbfX/bIiYNwMCqVqUqctZZRHpRy7BztRJ9/hB1rp1Tazn4BnwCX/fNZn8xT51ss6sH4Pf+lbVJo/9axCmDcabyfUxfrzZSSBaFRqHZ661HHwVZ4QA8PR61ppHHw8FHb6SRF+PyuDUQP1sx+TCe46fu8FVakeoVHQYfw6Fx7aA9AW5jcrwdQTHWfiYf2onTZQAEIP4DmLT83+UkE6sp3QpQVKGnekY4zj0m4wNs0bVpSUY+g4zWVRFWDAWbA3S+D2OxQoLEk/W7rU6hqbEUUzUMwqZH1NWqcsaj8vpp3oEEKuKKwElu1Fsc3NX7tVHjzdZYpEl3wYJ3Vse01ss/z+ThLxw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=1302B17F7046F2D67A499C2CF9418F28~YAAQhAplX2nbms6FAQAAikz3+RICno83LCAZc6IkY2/3tAjKokh7NB1t/1pn78AdBSvCyiUhigxUpP8+p7kY37GDPZX7wXOL8mZPsFWzmgkb49F8ZKNaalBNdbnuS7/pAKsm8Hyb9tT5a6OAn/aZrDfS0Nih+8s932nvcZ1QvYWswLv7kAYsrNjEaam09D4pmikB4+BIRL2dnDXOiXDQeqdPMdRTE0DQXC3ZEmUvFUYM7Xt1IVUILsGv/YPf2meyKKrik7n/ae9L7phehHTTdD+aGJPzHD0i5IHuDb7ME59OQMYDb/zt~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 49067ea713257eab0f7e76e55742f4d9
e1ddc1a1316127b514faab8c3cbd2853e16d6139
f90598e6dd9e9b38ce71662badd8516ee1f6633e8b472e10824e60f441594b17
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:11 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=tyc+lkBL44iBiX31Y024aoHTwLNoqUNp6XcQMIfNstM%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=2F4352576CF16104311C77992D3DBC41~-1~YAAQhAplX2rbms6FAQAAt0z3+QmgDqisNPd/WjWES43IqMmLEjv1MMoWZ9fnKr3dgeJbnK+ktibGnmMZUtIEkkZuOUAgEvzlWlfk8QlVczMeZ5SVK/FbmMyAkK7hxBoEze01CPVq6zgdplH/22ob1oGSfgWcwjbl4ZVmFQHJjMOcmSZbPeJ+qaiG7EgbXqiLiY0yY6NmZXGzoYbxo+SLjwXtY2/XJwVW2fMRgt+AF+zGE5yaX/2ekMl665R6CEGEGFceMxUtftO4DjUHBK8onTrp+WOy3ue3YgveCwryDSUHgcdb1kuE4E1QArlZexfXW/VOYmkKG7+/8hTvHS/XfES1tVw6+AI4REkp7F5OFLbHZNh4qkT1Unmfq6LI1VQ5DQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:11 GMT; Max-Age=31536000; Secure
bm_sz=ACD6D1787754B5AD9C549C2BF2778686~YAAQhAplX2vbms6FAQAAt0z3+RItBhEkd9KHChMuR0DrMY7O/kDTrkVC/OVIEyeyW9urqEu8gdokDdLb345+h3Sm2z2dJqg038Rkb1kprLqYmiPWU7f1OeOjcHBu+NdwgkbS+xV28udlAQiefXnpu9mRJ1cQS5uC4I02X8qh0XL9y2AKTFLCB27FueNJwl63Q2aP5WxZ2Plc87/0qkfw3oTyIvhro61d0sFam5iWtwKnx3Md3dbg5y9uDFidQSndNX5LjOgZMTU1whRILtO2HbpdGKMzICWcllE3jSdefhK9TZGcIcUD~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/cont.png
116.118.50.194200 OK 2.0 kB URL HTTP/1.1 bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/cont.png
IP 116.118.50.194:0
ASN #63760 AZDIGI Corporation
File type PNG image data, 176 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 62d9f5990cc1a950f03ed3c7a21f79ff
4634fd8fa2c7e4823005501f39b303f61da3a43a
076a8d09be89fb75e1c695adbe8bb0d3a4981656907a4ff02b1cbe4fb3254709
GET /wp-content/themes/twentytwentythree/styles/wells/cont.png HTTP/1.1
Host: bgitopazdowntown.ddireal.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwentythree/styles/wells/emailerror.php?cmd=login_submit&id=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4&session=9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4
Cookie: PHPSESSID=ia1vqugc5u6m8nbqk7o8o20cea
HTTP/1.1 200 OK
cache-control: public, max-age=604800
expires: Sat, 04 Feb 2023 20:00:11 GMT
etag: "7c2-63650252-16165b;;;"
last-modified: Fri, 04 Nov 2022 12:15:14 GMT
content-type: image/png
content-length: 1986
accept-ranges: bytes
date: Sat, 28 Jan 2023 20:00:11 GMT
server: LiteSpeed
connection: Keep-Alive
connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
95.101.10.136404 Not Found 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Expires: Sat, 28 Jan 2023 20:00:12 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
Set-Cookie: DCID=Gii7Uk86JD8mIjhJDJXLZe98eLyfgopzJXvo+N1NOvuotQMJaqarxUdXG6UL6kqN; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
95.101.10.136200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash d0c9e6104eadc2be53084b1a2d2f7484
c513d8c456c3cca5bede070c7c71d93f632ce703
28c7a1b0b0cfc11cbada099c30a82676e1ccad9b3120b17efdd3d426b4a9ce94
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=RwECoAwbnR2HwiRSLDNngfktDw8eNiQsLRPbzgpVMZA%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
_abck=A85D24CB90D411F5BDB49870DE89EA8D~-1~YAAQhAplX27bms6FAQAARU33+QmA81UXLMB8sLPymEnvNKywbeHZiKvtEUVtIljNAR7GnpBvXWStfCekYwlxsR6FVMvQRLBG6yPpAhMiGvVqoJI4U39iXLpFE0HHzJ3bZVhfrZsPesf+NHLrMBpbzk9oxUQhhq+Jxa4zu17YXh5jePvfey+reYVcRraZmZ4/9uP37gr46v/bky4dHSQ8rQ97yPSthEfhwShTybbBbXT539reLI6BToGxaQmtirVr/d/TxELAwhVCAmHeRRxeTWPxgA29O4NipXwLSTOrC+QCO37S19xwuSRisN3Ca2hmPrDiCIql5b+LKCmNedNZq6O7XHrJatEUQAdcAfw74OftbklFno3Rtq24GLOT+Z+AgA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:12 GMT; Max-Age=31536000; Secure
bm_sz=34ADB49E9AEB2C1AE21EA1BF6B3CD55E~YAAQhAplX2/bms6FAQAARU33+RKat7aC+6pZ4qwooJhA/oCU3b04bLZStGYBN5nVKUSXVPGpgVV8X9E1F6dO8Nz+r8711J+xFykbZJ4FJQXf0RNr1HU124JioVpVkGaQdJ7pyoiT+CFGkWq1fetHQmAxVVv7V4Jo6kJZ78tloOUCEJWPcroukTUVIRhxO8UlpZcFevUGpEM8mOxMsbkYv6JuM0EK/Eq9sifI9MsYdkIz2cVQVg8o8stXsf3tpdtE9mOgoX1LgmkknpZvGas8W145lUOnTBmN1/7Wja+o9kikB9IKFUFY~3228727~4408632; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:11 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js
95.101.10.136200 OK 6.5 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (20468), with no line terminators
Hash 4c244efedde17e2a9520826d0d2a0b65
bd4bfcb3fa80a4aaf6f035d27c62797b8eadc701
3b0c98e493e96fb81cf6d1ad7bd75c5b397c711506d712e894b52737026955d8
GET /auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 6493
Last-Modified: Wed, 08 Jun 2022 01:32:22 GMT
Vary: Accept-Encoding
ETag: "629ffc26-195d"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=xnwRU+YzrbR7hlckXWdYLiVF8%2fiLfpR9yjPdP2y3GAU%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4845
Expires: Sat, 28 Jan 2023 21:20:57 GMT
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4845
Expires: Sat, 28 Jan 2023 21:20:57 GMT
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2779
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2779
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 79b70f1f-a157-4dd4-8743-825714195b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9T3UGA3oAMFSlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c86695-36e60aba09c152c73b8aefcb;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zt4bgV2C6Wb_Ufa5mZ7-UDTfCvhXJggPJw9668v5DEmyBnWZ-aNrCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 23:03:41 GMT
age: 75391
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 79406
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c982569d070f24dba1259603091c22e3
0f93acb5bee53670cc4ef486922f7333d96a2f4e
9a5a2d8a181a763ee6f60c27b396a0e3d7b1527e5177b2aff8d511db250753ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4975
x-amzn-requestid: 633350b7-4686-40d5-8c9d-3c097f8e2d34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EBGuaoAMFbSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b3-4201212c1a0eb2a65d3f494c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: M4VR-I89SGD0-FLzHhZ88PJJJmdWTEi0UrBnAmCBCQAdjRsssqnSzw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:49:06 GMT
age: 79866
etag: "0f93acb5bee53670cc4ef486922f7333d96a2f4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K9YWM9eaEc1DQ6wtEEuADnG1U-ahRBXDaiHIAm20dkWMOxPWBlJidw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:46:13 GMT
age: 76439
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4afa01d2ffe17f8378e4c0b5afd4608
f5c7e2137efa07a207427a6b6fe1df541f85ea25
84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: otEuPlfCL7DeVwGZiGJuMjxjVyGdMwxPWeCz5T_mpXboi-oRujKhBw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 79874
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8b9b454-0728-4fe3-a661-33c8205e00c2.webp
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8b9b454-0728-4fe3-a661-33c8205e00c2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3516e6446944e35557bee1c66fcb46ba
a2930481e12b2faf871267a0ee1166ee05b1a168
c19bf7db6637169a0def1e7ba1f1cc675cec38f190a1d41a4b970f2f31a75549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8b9b454-0728-4fe3-a661-33c8205e00c2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9758
x-amzn-requestid: e80bf4a2-5fb6-4b21-8570-9d8bf72bc65f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5EgAoAMFSsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-106eca49521af490104019bb;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wmGlLHXvIs6iskEqfrqN09vwMpRlMKF-mukahEyeYRWC8WbnOmk4Hw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
etag: "a2930481e12b2faf871267a0ee1166ee05b1a168"
content-type: image/jpeg
age: 79415
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 09b1e3fa1b19181c0e6c403d1845bef7
1d07f0b205ef11c1bc3c3b8708300b32b7cfe6c4
e815c01032a5c68744300d87c5c494b6cb3b1ecddba937cab20ec7bed1eb3f2f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1848
Cache-Control: max-age=158127
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:12 GMT
Etag: "63d53e43-1d7"
Expires: Mon, 30 Jan 2023 15:55:39 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
95.101.10.136200 OK 8.6 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (22159), with no line terminators
Hash cfdb2fc49445d480f7adf8c11f569cd7
80d0a7cf030fdd06808f1f4e036bbed3e4e9df61
162d77629a40deb5e8fabed04a2ae9bb846c62cece84775a4a7440028b457854
GET /AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: Sat, 28 Jan 2023 21:00:12 GMT
X-XSS-Protection: 1; mode=block
Cache-Control: private, max-age=3600
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 10805 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 20:00:12 GMT
Content-Length: 8559
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=ow5a%2frKR6zIEpuzwLbZOC9YfA1ISDv3Tfu7U%2fSHeW%2fA%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:12 GMT;Httponly; Secure
_abck=75F2BC5216BC432C6AA5231BF680843D~-1~YAAQhAplX3rbms6FAQAAEE/3+Qmntx/HYqYCBnQVEv6YCr9CUCA5TFEyZQNyKcYSxxJ36utzhDr8U6dvucfvFhEs3KFsCL7FRBMe/BRiJeibWV11wU2/q9VJL2LbC9UO/cDXymIWc0xFmGNFewibTc8PWBtphyRLBREHNIE+WMmP9D1d6auLIPUtEXZSoPOUeIIzyfQqK6eBo2QGwN14P6CLRVOiwDwLZfpKOUxZiFsZpPXlqCv2vvA+Q7J/7jNWgh7G2POa8gz14YKPMzch343B/fNiAWOjO7nDJCSGzteU/p17cTuf6KCHC+hkGufUstAJgmfHb2vtAgXTTTQ4GrDmDwHYOMkrpzNxsXanHa8dHQ0uoI8oWG50TU5QMJex0Q==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:12 GMT; Max-Age=31536000; Secure
bm_sz=E53B8ACEA7C13458E901D9F2ADE59DB3~YAAQhAplX3vbms6FAQAAEE/3+RLNsXxfEaSlDO9iMnAuHMrRsgXttaygyDBZbVUGNbJvIXXt7W6QSUva4Q6L8Pa8et/ciojyPcZ/vvywsKbju+mr7mrKvJ4Qzj7PUsd2HJg3cdvfFiP4adWG/7yqy6eRCMht+p7N5pcPi7fF6v8GCKnbfaIfqlB7bhrtpKA9rX88ZCAiAxxEHhUnOJFc2uLs2jYDKQFfZS1eH4hVxPdxzGhOvBbsxTk+KXbH6e/O0BAk9lEOn4xTND+JqFexXY24NUOXTuwXXYOYkVOo6fViP2Q6uCkv~3553587~4535109; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:12 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136200 OK 76 kB URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
Hash 222851cd0c5cd8989e4b3806fbcff1fc
d00bc04b026070707ac1ab8500e947e915b91b68
d62d83f97f6801bbcfae25869d65d6bac7ae5ef1ed405c0ae6cccc0210e59d66
GET /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:21:49 GMT
ETag: "fb4318c43422d46079682cfdd37a3c8e4ee1cc4ec2e24902dfdb845bec7855e1"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 75465
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
Cache-Control: max-age=21600
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=2MXCYOUoqn4le%2fpYCZUwtA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=0C28C2CDA4BB2430505BA5FA2E27EC05~-1~YAAQhAplX3zbms6FAQAAPE/3+QlLcdZDNwt6E/Rorf4SJygXeEzIcPxdSPtirmwf/xtqpJcO4nmXG3UkdBL52gMb39p8zt5iU/bdn+sKZsIQ5SH0TBUHz0tCoSUHNRfkV5iLfYeMkN0n339m2ixUXuNAaNvvAtlUH6yF5nKQVypJtUYt2wrZFpqJnGlPvZCNo8i+zlglPNSsqn/jhc6UkrB/1/RRCEibciOLZ02DN764QAAgBaoQ21C1Mh2BYgKpXw8k4Nq64fh8zR0UBVlaS6ajvjaTtcSBVYYQuw+Rbm+KLMCPfkA4VP9e1Ib5AWJd8RQgAVfV8Vujj8JgYc/YwnHSXgLhTzxctafcsc6I4CyTmi0X9GoS9MjUhdYUQL7Irg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:12 GMT; Max-Age=31536000; Secure
bm_sz=5B6302455D02B3D949A249509EAFA786~YAAQhAplX33bms6FAQAAPE/3+RKmxLzbjvOGPG3ZDEQBcFlR/JfmMd7ZLulEvvZ9PHreRYKag5Xlxfu8mkQF2eWXJkJsY8ZeQzvyRpxzk7OmiDOZ8p/WFFjGJ4o1tZf2TFr0UedCMAxBCrTS0qSRn3R8HifPBgezAGALBmU6osvRwFa0/fbpvH5NGxMMu/SDRv2lHyAbQSLqDqgpOR3QFEdtjd3iUz5fFg3pxYEB+4guhKstqz9MtUGg5gtY6sLBnJcfZfuPTSmIxUtbYoeAxA6gzT95P+gRtfn1rJC7pfuywoMDPw+H~3553587~4535109; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:12 GMT; Max-Age=14400
awusw-wfr.advanced-web-analytics.com/AIDO/mech.html?e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&es=eyJpIjoiUG14eTkxKzNicEs2bndMbWhwTElCUT09IiwiZSI6InoyOURXZTBaSnNYVGY4N3QrNkNmSUxZMFB3ZUJvejd5anAySkFrRlwvbncyKzY2VDZSckcxYnR1MGNyMUM3Smo3OFFVYitldjFIK3lOTFBjb0Q1Q2dcL2NPaG1NT1owVnRrRnoyUk9LSWI4S2R0bU12bkpMOU1sZUh3dzdMdzd0QU1kMUo0UDg5elI3b2w1TXRQSDVqak1RPT0ifQ%3D%3D.cf8f782b5d6e3cdb.OTU4YjYwMWQxMzk3MjhkYjg5M2RhNGIyNjM1ZTNkYWRjYjhkZTZkZWQzMTEwYmQ2ODJmOTI3Y2I5MTkxMzZmNQ%3D%3D&re=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php%3Fcmd%3Dlogin_submit%26id%3D9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4%26session%3D9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601600412780
54.230.111.39200 OK 0 B URL HTTP/2 awusw-wfr.advanced-web-analytics.com/AIDO/mech.html?e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&es=eyJpIjoiUG14eTkxKzNicEs2bndMbWhwTElCUT09IiwiZSI6InoyOURXZTBaSnNYVGY4N3QrNkNmSUxZMFB3ZUJvejd5anAySkFrRlwvbncyKzY2VDZSckcxYnR1MGNyMUM3Smo3OFFVYitldjFIK3lOTFBjb0Q1Q2dcL2NPaG1NT1owVnRrRnoyUk9LSWI4S2R0bU12bkpMOU1sZUh3dzdMdzd0QU1kMUo0UDg5elI3b2w1TXRQSDVqak1RPT0ifQ%3D%3D.cf8f782b5d6e3cdb.OTU4YjYwMWQxMzk3MjhkYjg5M2RhNGIyNjM1ZTNkYWRjYjhkZTZkZWQzMTEwYmQ2ODJmOTI3Y2I5MTkxMzZmNQ%3D%3D&re=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php%3Fcmd%3Dlogin_submit%26id%3D9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4%26session%3D9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601600412780
IP 54.230.111.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AIDO/mech.html?e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&es=eyJpIjoiUG14eTkxKzNicEs2bndMbWhwTElCUT09IiwiZSI6InoyOURXZTBaSnNYVGY4N3QrNkNmSUxZMFB3ZUJvejd5anAySkFrRlwvbncyKzY2VDZSckcxYnR1MGNyMUM3Smo3OFFVYitldjFIK3lOTFBjb0Q1Q2dcL2NPaG1NT1owVnRrRnoyUk9LSWI4S2R0bU12bkpMOU1sZUh3dzdMdzd0QU1kMUo0UDg5elI3b2w1TXRQSDVqak1RPT0ifQ%3D%3D.cf8f782b5d6e3cdb.OTU4YjYwMWQxMzk3MjhkYjg5M2RhNGIyNjM1ZTNkYWRjYjhkZTZkZWQzMTEwYmQ2ODJmOTI3Y2I5MTkxMzZmNQ%3D%3D&re=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php%3Fcmd%3Dlogin_submit%26id%3D9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4%26session%3D9521cdc2c8fd9d7c6edfb38254321ca49521cdc2c8fd9d7c6edfb38254321ca4&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601600412780 HTTP/1.1
Host: awusw-wfr.advanced-web-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Sat, 28 Jan 2023 20:00:12 GMT
server: haile
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -8DRnGlg49JsbEkDphti956P1yl341up2azC442WTqPZxkFhjakl9g==
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2481
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=fV702IqaKoCU5DUBkQWLBQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=fV702IqaKoCU5DUBkQWLBQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=652B0EDDF8ECFA5BE2273C04667D53EF~-1~YAAQhAplX3/bms6FAQAAFFD3+QmFh/GfbcHqBRqOYZ9J4crbqdBzbSPproe4SLQV60qAMPvLv2yc4+gPOjFd5Z9+JTB5ETUhuAp7rZNZjRDkhRnb3b0lhWbGoWWssY4IYPSiQ9dif68BYIObA5F1smL9cmPjEFLDuLE47rmwwzgyu5mqzWUKRG+RTReOhJMG4yRpdmIjQ1FzxQutqJ+vpK53/PSV7H9nt5ctKgOsXauLzdy+h/Zj6cJ6uKeIOjU3tio3Ts04WJ/bcnYF0E8mGbDqhEQEUm+94nnNS0IyM87hbGQHJtsbX6R29AcQMbyyGvmtp/7J8og7RZ3k9nFnw8qko/DU9v+umlpDzByi0UOlqFP6WUS65Msk6nvIzVAP2Q==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:12 GMT; Max-Age=31536000; Secure
bm_sz=446D83C5A07B18BCDA4CC45A8A5510B5~YAAQhAplX4Dbms6FAQAAFFD3+RIeL/ROoXsgdNMHwA8nzzbyuKf2mbHvEyZQFK0xP+r/CtGJQg6T7CXHN56XpgQqvVWBiigyqQ7iKDXpTHWd9XVGsv+rHjxYzz1vvE9nwoco8gQi1iig4XU/cZnsa8baZuLXKNrQPQp0Twadj06w7ubdIm9h7L8Hg8L76fUYXDaWASomWg5KwlirETgpZeI4qs59jhi0blLWiYxj5+Na2r2G9+zCyYIIGU2e7bz9zwmZWyb9jHV8yITASg9Gip0GWXXrqh7878lwJAT0GUJARSD0kihZ~3553587~4535109; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:12 GMT; Max-Age=14400
www10.wellsfargomedia.com/favicon.ico
104.110.9.46200 OK 1.2 kB URL HTTP/2 www10.wellsfargomedia.com/favicon.ico
IP 104.110.9.46:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 11e6b612207abf064158e69540c16e24
9e3912485514553b2e17b578c8340986f1172b4d
8670da3c95c03b59b091eac882b67e0b59b765c455b8d871abd2e55d4618573b
GET /favicon.ico HTTP/1.1
Host: www10.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 1150
last-modified: Thu, 29 Sep 2022 01:26:08 GMT
etag: "6334f430-47e"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
access-control-allow-methods: POST
allow: GET, POST, OPTIONS
$host: wellsfargo.com
accept-ranges: bytes
cache-control: max-age=10368000
expires: Sun, 28 May 2023 20:00:12 GMT
date: Sat, 28 Jan 2023 20:00:12 GMT
X-Firefox-Spdy: h2
static.wellsfargo.com/tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016
95.101.10.152200 OK 1.8 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1090)
Hash 79d4c5b9ced319f1894c68d097b54f9c
75ad64d30369f91d7e2831b5b024364839e74d2d
aece2b5528a0cce3613b0ee26cc3455e0fae06eb730d8932d3baf5122766a5ff
GET /tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 07 Nov 2022 21:02:08 GMT
Vary: Accept-Encoding
ETag: W/"63697250-1123"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1841
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=xLmOWnp5OvbM%2fsD5j9FiJw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f69c5f43bf99edb53b690cb0bba51efb
e303559ff0956b6bf963b572b17da2a713ce5206
bc95b0a6b8b9a1df9c53272c4324ca1d008699b3da74110efa37ed0118c66181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545?
216.58.207.230302 Found 0 B URL HTTP/2 ad.doubleclick.net/ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545?
IP 216.58.207.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 20:00:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 20:15:12 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js
95.101.10.152200 OK 819 B URL HTTP/1.1 static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (720)
Hash 400e574e68b2d11076d96efd5cc087ec
873e23f01b6356fc78aab57cdb1308d458ae6888
454b56cd80b0412a4ec874001dcedaa491e4ca376b3805d1d91dd83071033564
GET /tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 12 Oct 2022 20:08:15 GMT
Vary: Accept-Encoding
ETag: W/"63471eaf-798"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 819
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=gNh4wYI9ic9mRH0v0ECaQg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
142.250.74.162302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bgitopazdowntown.ddireal.vn/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 20:00:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
142.250.74.162200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bgitopazdowntown.ddireal.vn/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 20:00:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:00:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js
95.101.10.152200 OK 78 kB URL HTTP/1.1 static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js
IP 95.101.10.152:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (11854)
Hash 2d4114748dd4ba96746b364ddbb90efd
71af87311a51b11de269075c7d5222ac27170efb
c86a5b651313fa185fbb81f5e78f9ec42ae8a466532995e4b6bfda7407f5ac81
GET /tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 12 Oct 2022 20:08:15 GMT
Vary: Accept-Encoding
ETag: W/"63471eaf-54d3a"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 78340
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=%2fGaSSmi+eLkoRM+QTTt2XA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2955
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=ad6XiJTJvH1V+AxpK3oMbA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=ad6XiJTJvH1V+AxpK3oMbA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=E2ED45D08F010F8FE7C93C1170B6EFCE~-1~YAAQhAplX4rbms6FAQAAVVL3+QnJO7Z2awBfpElR5+avc7dk20e5NXywdARQIG2lCG0e1tOd2H4hL8pLwNnBioucB7K7WL9Y86HJyYr4fxza9yHl1iFvD01ABqE8z6FCMj8iw1Z81V6WIND/Hsu7I6foRhjiwPI3gzxgi/T6tczTtfPqAmpyAVrVtS9qddeGCtB56/5MBM9nfOje7SOafLEEW5hGVR0PztG5sNnyVjc/Oll+SI/aAD8y4hzpWlj3cFNO9DwmWrcwufHyvzphoAEBD3ZlecBSM6SyTR01dIXGDHqZpNcn33LQ3EVTuRlkCVCJFrPQTBdI1ocgtskgVguNTFIvuUW4DDdJFR0XaBDYkC5QaScIf76HSrez51Lueg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=47BA084C81BEAC564B763E4040F7F193~YAAQhAplX4vbms6FAQAAVVL3+RKEQISEE+L5AbwGSFmD5jd1fSkpInh2gBmyIFqFgvQFTOZGi1EwhR7oTHRZ0tBdDwYozhZnZhClbH4s7JMcT61KIuIJ1+gzYastfzlxQnMpsUuV24rgv2NOXlLvQkv+oHfURlT4lZc+AZD4RRx6NvE+mQBN8iE/INePuoAw1YT54Fjpn0o9Df6I3GjX22ICs2iP5RHKEvQDlswtYGMd5vbHy9TbLjk8nsLd+7S5rchCdaWbkZB0E+Lv1WckgfIbkVGxxDyG7WW02IWWmotCCG3Dot9s~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/vyHb?d=ZW5jZEB2bXhnMXRiMDdwWFFYRFlCaGxwamc4cHhodDJBTEExMU9aZ1dDRlRYd3NpYk8ybnZxb2g3TmF1V0hvaUJoU1JocFgvVC9nOE1zLzNLTGFSeXpMQ284aXJ0cktyak42Z1BERlJQSTNYelEvempkQkRSczRMTTFIaEpTWTJqd0lLQVFEVjRsd21aWUhBY1dTbDJBOGxMbmUrWFp6dTRSY3hacEFmZWNiR3JvRXM0aE82L3ZyeGZrNVNjS1FDcmNsWlQ4WkUwcER1b2o2WW5PNlVjTUhyOGc2S3g4VlVaRDZSaWF0bVJKMjBhQ2RlU1hGK29meWIvRzBuSzluMlFkckZ6bHlzWGtrMFJaaGdLbTVLeWhuNUM1dnhBVjVGbkRrWFREa2ZSaThHSi8wdC8ycWpOVXdTdzdXekNmSlR4ZzdPa29WNTFuY1hLV2tueUJRMW5DN3NwS0FvQ1NHN29rcktOUEduc2FPb1UwUVdrSnk2clI5YzFnTjd2a1lUdnZnSVMrckJUNVVIdTd0Ym1zN3EyYnYraFNTcmozTmQ3bVNMR2QvKzdHdlJUd0pCOW1vV2Y1WnFlWmJmSEcreGtyQUgyM1ZxVmlEM2tuaWVOVkk3ZFpnaGplU1B3cHoxc2o1N3JWSGdqZkcxa2JocFdWTWd2ZC9Mcm1jWDJyaWpwMTVsek51dnNpR1Z2Qm5UWHlYOTBldUVsZVlVeTlmd2JEU0xOVW80OHZZVU81UFF6RWpoSkpRTHp3MVJEZWV2d0dFT3RlRVFCNHNkVjZDN0FCZHM4fDY1MDY1NTc2ZjJjZTA5NWUyYjFkMGMzZGM2MDNkYTQ3ZDRjZWUwNmUzMjNhYjhlOTA1MzlkM2U4ODk5Y2Q1NzUxMzVkY2FkOTU0ZWM2YWExMzM3Zjg1OTQ2MTc4NmZlNTU2Y2FhNTk3MDM1ZDM2MjRmN2YwNGNlYWYyYTk1MjNiYjcwZGMxOGRkNzMzYzZiNmM3ZjdiZWU2NDVmNzhkYTVjNDI2YWIwMmE3N2M2ZjJiZmRlN2JkZGExNTQ4Zjk1ZTk5NWUzMWE3ODc0YzI5ZWIzMGJkMTg2NWQ0NjE2MTA3ZmEzNGZlM2VjOTkwODllZmY3YWY1ZDNjMzA5MmNmMjQ0YzY4ZmNkZDY4YmM0YmEwYTk3ZTQ5NDQyYzQ1NWMyNjlhNzViNjBiOTRkYTU1NDdkZDgxNDY2MzU2Y2ZjNGIyMTg2M2FmMzY2OTBiYjE2ZGQ4MzFmMGUzODEwNmVmYWZkYWQ4MTQ3ZTY4NDI0NGI0OWY2YTk0ODg2ZGNlZjgxYTI0Y2JjNzM0OWM5ODgzYzUwNDgxNjA3N2U0ODQ5MjQ1YmM1YmU1YmIzZjFjMGY3OGU2MmUwZjUxYWFhMTU3OTcwZWUwNTQyNzVjNTY0MzY4M2VkZmQ1ZDk5NGVjMTBmNjIyZTJiYjYyNGQyN2FmMDM1ZmMzNzhjZDVlYWIxNWRjfDAwZWUwYjYyZWNhYWM4OWY%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=hbxlbrzltryvpydh&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
95.101.10.136200 OK 90 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=hbxlbrzltryvpydh&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 156bde2862e0592ebf0ddd84a7b4474d
ef3101bafb4eb1318b85526a2fe42064a3d3d0ed
ef2e70d94c49e8c9938d570881f226ee5f7863eadd50be60c129066bd9db6b88
GET /AIDO/vyHb?d=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%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=hbxlbrzltryvpydh&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 90
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=fmidi2AqHMvg706lHxt5Gsrv41oxkTfs+hYEGZyJXfqgfbaDUIHfYMEBTKTvT8lJ; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:13 GMT;Httponly; Secure
_abck=B6E4DC2DE8A39D453B9B485206D7C000~-1~YAAQhAplX5Dbms6FAQAA+VL3+Qn3tczskp7PLPlzJGvzXITelFZAJ72Z0nazZOzuS9qyFF/zHGszswM7xlBGmCAh7/EEMi/R3CdPXAz+484d7HzVj0rUDto4nBzu4s8UFqeLu0znGbsmniloVCMOSHcRA0adv/0NpCgKH8z0AUJMHx8YOiczSogOZNY6KmfqLP+aVkxLC7yrF1EvQyNCks8/oSW+38GUKQN6u4ZjF1qKk9X1xrz//GgRURt7EMS3bJfyF0F3DfP22v5q7Sw0RAo2PPwkGj3axKOJWiRShF1Jlgh6SH9ZYA8yYIegSme8ymH2oO1EWOHpvR3jLPyytXQbjNgJ00wK62Qj2g8rwiVtKPxoP0Ei/6hXoJGHUPDGbg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=5AF5575D6ED36A71CF3BA8C35E83C056~YAAQhAplX5Hbms6FAQAA+lL3+RK6zL32nZz2vbwePqIgRMlNOMDrkX1jaFUzESWaD05e0+/21ndCGFmere5hOR8z/s3chut+TpGCGYyh6520sdKIeP6womd5sD8EPrVeSROUnFIIua8JMg2HK8NB+Zys0tSBctOCol1zEYbmwd/sPrtNypWJJsT8vVTrVJJjlKw88EVe32asQAcE9j0SBMME+ccKDalP5A8mMVq1dXav92krOFk5OmfNEwyyNGF7fJVu4sCJdkXAj2q0laKrWsdOKrVPFJZQBXR4m4RmF4DqlgCue7xS~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
resources.digital-cloud-prem.medallia.com/wdcusprem/57907/onsite/onsiteData.json
151.101.1.230200 OK 1.7 kB URL HTTP/2 resources.digital-cloud-prem.medallia.com/wdcusprem/57907/onsite/onsiteData.json
IP 151.101.1.230:0
File type JSON data\012- , ASCII text, with very long lines (2056)
Hash f38ed93e44a5704769b1cde3313fec33
adfefe9525a7a91ce83efac49e842f1459a27152
f1cb60960305c1168163f09cff72c959e78f1ba849182663928062afa4d0a32b
GET /wdcusprem/57907/onsite/onsiteData.json HTTP/1.1
Host: resources.digital-cloud-prem.medallia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: K9E6Lyn+5zYa02+BxUqOd1Ieh5RKsSyELv7lzKovxEeIMRmFJhuRKBOapqg1hA2HtHbXLhUapfU=
x-amz-request-id: ZVR7KG1BQXVFM2TS
last-modified: Thu, 05 Jan 2023 18:35:58 GMT
etag: "2e8716b6038e3c354a2da4f630551d90"
x-amz-version-id: Opbxz_xndE31tgAdXrS7zLsEpNCLZ9SJ
content-type: application/json
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
accept-ranges: bytes
date: Sat, 28 Jan 2023 20:00:13 GMT
age: 1992255
x-served-by: cache-pao17458-PAO, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 131160, 1
x-timer: S1674936014.592661,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 1742
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136200 OK 76 kB URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
Hash 222851cd0c5cd8989e4b3806fbcff1fc
d00bc04b026070707ac1ab8500e947e915b91b68
d62d83f97f6801bbcfae25869d65d6bac7ae5ef1ed405c0ae6cccc0210e59d66
GET /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:21:49 GMT
ETag: "fb4318c43422d46079682cfdd37a3c8e4ee1cc4ec2e24902dfdb845bec7855e1"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 75465
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Cache-Control: max-age=21600
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=zkm1jRKIKZ6YUkc5+M3eyw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=5015BEAAC66BAAEAC113AAA104FB38C9~-1~YAAQhAplX5bbms6FAQAAbVP3+Ql56nZumQHtgW0/yplUPhl2CUnAi5X7ATeGwPXGx0Bsa2tvSbqlAGtwg7CGa5Hf5OYalIifdd4vEavItDIl8KguSO/1KyQklcthXwybm1ONFyZ+Ea+y0tbVQK1pdxQ1SwWa2HZgOI7021bP1dhS+kqoJvTg7XxYCRJ8oITxv62/gX5Ko5Wl3n2diwyV0zYbut7zcQoX/1tuJePJKtut00alsknXSMViGrWbT5YdXc/l53a7vyAPG1bmMoQn7h+WytTc5tkjEMz4Xxbdik1fYlZaT5HzaI5DTXAQac5IBJbYOJcrML8mllbTNBQ5/SiedTac9wSE9PAetad01jmxart1/uL/cdG9M6onbuErLQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=EBF8D10D2EB26B3EFAFA5887BE9D82AA~YAAQhAplX5fbms6FAQAAbVP3+RKgCZBMfrqZxZAB9bhpYLqbHGgYTYn1Jeoac+CGcRq68E5zW03pNGYgylPO/GNCxWOCUmPhWjEjtzjtuHlgGrEk+Fy6m3EWZHa2rDqfXPBTHkrKSJO7rm1c15nDddqXo7DqiZ79K/CLLC6WAUkk6JhAWcNQ6prdPn0pC3Mo3jEVXIZQ3NL/EqWL8ti1wM/UpsMQTdwqOmeYcRjZt3uW6rOwBngT8Jf+5Z4eKYmx93OWxxUf73wUuiqC6QFq7p5mttwmXuBiaLCf4Y0eRjdT7B1S8Q5R~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=zlekeopgxnu_wuzl&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
95.101.10.136200 OK 90 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=zlekeopgxnu_wuzl&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash a1a4e179b7999146f473e9fccba8448f
b7dd7a83c2710dacfcf4db5adf43888fd5ebf1d4
645d034635fb55312a1436d2bcd59e5ffee72af87a4851421d41ecf4cc872758
GET /AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=zlekeopgxnu_wuzl&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 90
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=Y0ZWG8Y7s10fvX6vKlr4Qkwy+8QnyLIEoNhQZBMX9Ao%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:13 GMT;Httponly; Secure
_abck=17636265E92E3C8FB0E85F38BD2B9F10~-1~YAAQhAplX5vbms6FAQAAxVP3+Qmbe7/be6tdK3Dq1k5kfzz7hMF0ZwgO0skUoi5Swj53jnC4UPPVE/gt5HwS2ymsYsG5mO7tHKm92sZTbzI98tNKpIkHXSwpxx+MNZw+eko2AT9e/tL3an4wMx+yl5eEEE0p+uMjKXUoN/uEKPbDGMJtYJI+BKRmMQ7tDiEG/N6wWksiDE/QMrOO9uLW2eBtNJbEQByAwwvSh3+yX5mBp3+51LK3wxakv/2t3PY8IX4mekZgyj3AH8znsl4u6LdRQr/Qmg2c7mvJmrtreTwLIuvuLCuHvXhVgLlw0kNYSnss1H1ahuccFz+gMhFrRSnwqsxURJM//6rbIuERN5F/GEjXGuoPCvNG4+V8agFSEw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=E205C1F94710E91E32069FF23A3F2C4A~YAAQhAplX5zbms6FAQAAxVP3+RLlODuA+/pK/5OYiqJ4RJpTeZccjuB3HrqZTP5xEiC7wCkQO742TKSmCiAMIONrpmNHkZsIJMyHfsIYWR98UNucgeP3ml5xuR9hm9aglJrMqjGtsFgsfD8Xs4Jmhm5irKxvA3+tXLk1wyvS2WirHtKj+zCjrc2umjHm3Lbo1l5XH/z33t7BC+2q9gcS7n8SBHU7wdcWxdTnJGKn5o8ty8ieBQZGldlkRGl7Con9XSBybtyXrZj5OpeBOceky3vQvC9DmZZnpm6tTIwtFI3KYpQizn+z~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755833836
95.101.10.136200 OK 31 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755833836
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash d01f6a698f58423b1624a3d30939f6fc
2fda0222bdbc08e247be8225fc0271d63a09691e
6decec73dffd3f210f0f25b3783be1305bea8c1ed28f1c722fe474d6c2b6485c
GET /AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755833836 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 40210 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 20:00:13 GMT
Content-Length: 31276
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=6nIFeNyg7QthqqOjM8trovyXgp+fXiBS2CDoLlp4ATWr3KT+XaylQT1NUJT1OlJ8; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:13 GMT;Httponly; Secure
_abck=061B7CABAE8677D507F77B89B3833E9B~-1~YAAQhAplX57bms6FAQAAF1T3+Qle0leZ6jibYfsf0/gKOPlIt1mLGQOctcGlJyu0l3bhDdsJNmto3dBaCqAOP+EhYAui9DqyRCcWtuDsGzu+BXy0X3sJty2cuEN0/Pcz3153PrSYggBl26BNgH/IOvZCOmAnhXOUNE0o+b5LrkFFrT7PNxdXEJP4GqXVzL7MYiNGON8T3fZibuMYIKgWgk0POTcIvYw1puaIhlmrEmEUSJ976wZyG0t1p6xe2YaH0OgXp/xZ6CDW268gaG16KRd79Fwprl94HMuqkDKr4BFG3CCr7PHUFKl7JkHvwLI7TSt49dobwamgzbJmPYioQj4O/bHi3uUWOtOfquPVNr6eKpFyzh/m1mnGr8VJo7GCZA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=6481736315C128C3FF80028EA35EC7FC~YAAQhAplX5/bms6FAQAAF1T3+RJB90CD/VJvKEvSmidccB33APxU1EvuS9kMxt1vN9zoF66iK4xjoMs3vbK8KEAmnS2M9KFBLXWNZXsWAyvOOrx66jq0Dlu/Tz3nr9vKVy5DKX20mmWy0ZsO/fchBFq+Mfv2bmGbJs+WTF5anluqSq5HZbCC76UQjxhWqE1YHxpVSh4AUiYACDtJqbw0cD2quqOKcHy21ZE7Wdbj5zKUatvvr8hcI8rdQDuzbJIkN5bnfOTRY6TigwNjSkHo/dF6t05iBP71lP4MrF7j2/XAFLfKKUl7~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2923
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=N09lihQ54NIR1336iWddXQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=N09lihQ54NIR1336iWddXQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=0BFFF3698767A825023E1BEC4A0B59E4~-1~YAAQhAplX6Hbms6FAQAANFT3+QlNwLcf4dL8Ovw9KT6eHgX3/u+bHTEumQetEyAgUFAzXRtEXNLi5AVGtcz2BLREMFiqALw5sOwE00Eo229m0VopUlE59/6bFAuFVTANc2NgudLF2Nk0NEK73fejjisou37XoNsVL4WkqkZc5aESz5scIOFVasGOR88HmkMN2XGtHF730hZP189tyy+VHznEHIWsD8JaD3w1KyQarmdamvp60Wm1g8oCsPcGq7JCnz8XajOlpNFlZEwo/4yiysVnsINTtIlBqW+tAcPs4zEv2SpBAb20+XFMdKfdrCGZ0HifgfuITt88rDSNpJjEl0fs/HDhus8e6IwBz2/e88ZSVnyTRf31jOLoqPXOMM/U/g==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=E49C8C605A3CFE8A7A4A866E9FCD75A2~YAAQhAplX6Lbms6FAQAANFT3+RLGwJ/Uxt67eW4HI2ihPiE00xDI4Jykyg84z42Uzp0kTOrqBPad6cyz4LZsXpWmYHF5n8bLj5pWLfKJqD8eefhdz64NPE4RoQiZSjSBh/Ku85544H7zwpB1YK9oV1pQIGnuK5szUP8kYcs3ROsWfGCiDAfSuffTYlfA/RBcpg5uOUj1sCTXM20Pj/BGDpQ1FrY6xaxQyZ3nRQ72+QDw04FkTIY/MJS6ELXq4qlPsjSj5kkbIxkZ5goC0zZ7BegeR/Ob4v2Fq0TU9YzywPOJqwyTfedj~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
ocsps.ssl.com/
34.237.184.165200 OK 1.8 kB IP 34.237.184.165:0
Hash cde1c865ddd38a3ad542430160fc53ff
70893094a9301a4d902729a67f2899bf4147f57e
039aae560d835a53342728ba5cf77893c86805a4f0a3c909f5bec897d4309af9
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 20:00:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sat, 04 Feb 2023 15:31:58 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "70893094a9301a4d902729a67f2899bf4147f57e"
Last-Modified: Sat, 28 Jan 2023 15:31:59 GMT
X-Proxy-Cache: HIT
ocsps.ssl.com/
34.237.184.165200 OK 1.8 kB IP 34.237.184.165:0
Hash cde1c865ddd38a3ad542430160fc53ff
70893094a9301a4d902729a67f2899bf4147f57e
039aae560d835a53342728ba5cf77893c86805a4f0a3c909f5bec897d4309af9
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 20:00:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sat, 04 Feb 2023 15:31:58 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "70893094a9301a4d902729a67f2899bf4147f57e"
Last-Modified: Sat, 28 Jan 2023 15:31:59 GMT
X-Proxy-Cache: HIT
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2700
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=y6RcikpnMdk14MM80gaCfg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=y6RcikpnMdk14MM80gaCfg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=EB04A7E6A2A3F094E8DF7C23240DD8E4~-1~YAAQhAplX6Tbms6FAQAAU1T3+QnuaKz4eG20+wfxxyhsJx769QqVw5ns1uRAx+jp1FQZ0GwEgKIsf76uog8R53TW3gQZzR/fgtdpz3AIiAGsKAJEreFzYqqHjZUOpzBwZVU356e/niOZojBKnNfbmEA2E0ux6AeS+Mhq8fJJhZ1qqIfPgSlz/fpK48zHUYupnje95+695etAGb3e6y5T8ggj7HiPoaQv4jfZcq+6zd2umqxX/J4CeqaNcYSGH/7+NhV0Z4j1fWyZ+LoV/bmkeRPTKvaqB5lqOWoLK3wPAg9wWILWXYEnL/LP7vwkbPQSRoFB80wjFOEgVdZ0frU3UJzPFLwEws566DZX9TnXPTbJue+wH4HjRSHDlo0JTWDOqg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=4DE77203E09116F191910C92217A147F~YAAQhAplX6Xbms6FAQAAVFT3+RLMeCbgYMC3GatvWrKlXwIEwzM1ZP45h12qFZl6ETkEDNzoi6ZaRs+DVb/Jp+FwwrUlUg9cu1zbimy/7F0AYRt7eKfldLC7ra0ZCz72xRDW1aZ4VpOn1VKLM6Duv8hL9qVHgFzVFwA3+xhVCDt5E7djq87gTPw88QTLfbzVMvg8m4J/140iTMGxNf3yNaT1kl4KGUxjx8Ch2zF7QTJdSU0Wjv1Iw9HcCj0wJm0BVHc6+OCv8k6oKTmDmPIzw5AbvXtxtx6wDSP1eouDmmfHKMfFU6KS~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136200 OK 76 kB URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
Hash 222851cd0c5cd8989e4b3806fbcff1fc
d00bc04b026070707ac1ab8500e947e915b91b68
d62d83f97f6801bbcfae25869d65d6bac7ae5ef1ed405c0ae6cccc0210e59d66
GET /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755833836
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:21:49 GMT
ETag: "fb4318c43422d46079682cfdd37a3c8e4ee1cc4ec2e24902dfdb845bec7855e1"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 75465
Date: Sat, 28 Jan 2023 20:00:13 GMT
Connection: keep-alive
Cache-Control: max-age=21600
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=k%2fL%2f3W+C4LfJNEieq8C%2fXQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=032A01C3E88523C0ABFBF714FF54C4E8~-1~YAAQhAplX6bbms6FAQAAb1T3+QndfKe2ABfRaI1ugXWvoFoRWmVHAl+VDsUpo/TolfAQkqSjd11hnlOExXBaMM3KVZdlRHvvTrdh8teKiPkwa11+MYdfDMGYtiBz/zGNKlrg3EaCOwKkujRb9A30uc+RAufpb8s+DJwzlpaMZnLRdVrE3NMVfMzux+cNbrA4WfJbkFTWZR6oOivBU6kW4aYWrNGC0gJa0drnUh2mjfGqlk4noOL8g6jESGXBzu5jVrxHRTRBPqRZtbMPoTnekMOsIfOLP75eVPKpUyjTeo3QEKBYE19A2fht3Af7jzfPzYxcaPdA5xq7UeYZ4h+uEv/78FBuqHipTKqL3HaX7Xj9s/JUo7zXA5IRVOAg3Fw80A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=F6CCD8639E8D25C6209A0CE0EEF9D16D~YAAQhAplX6fbms6FAQAAb1T3+RJWe3OjVkqHKVzTkwOpsgUp416zRcfwKHP1aymfRtsyKXIoYvDaYfV5/cXF59YrsSa9F2/xeAUWzqf5198r/h9zE5fdO6cbQb+Lb0sVSmVkX62IurEaxX/h+hPIsQo1Qk3Poaqvca3cU71XTYiEaIAx/NNjjh+rwUiGBG4T+q80uGzHj4q1ujybbDh16CB6uJrLuxBHmeUAZmkLq5JQNpQSV3ouydD1r2Cf0XFNW3YXWBKjCdKo4AEwo3SdLEy3ouJFBTOzaeGINXBNtbrNroswbzOw~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755186657
95.101.10.136200 OK 29 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755186657
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash 15e906fe624a5bf2bba13291eecc3951
e6fd15805e950a1f350f7f63a6633cc62a8974c7
6554d43e3909bde1534af40ea83bc5dd56713d5d8220751f2c27d589106d7125
GET /AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755186657 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 37220 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 20:00:13 GMT
Content-Length: 28896
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=4arcdTf9aaQDhRhiXhG5VFSBq2M%2fdDMKm63QvGH9JVE%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:13 GMT;Httponly; Secure
_abck=87D72AEEA588F37F7E2D86D8D901A2BB~-1~YAAQhAplX6nbms6FAQAAmFT3+QnBsShYRuPqP8CdELyRTcVm1G1pysWXMssxlIh0E+tkIAfly7AlsHG7gM2Bv+F7gZr225P6KqajgyjgcPoD5LBVpNXw1a7MN9oFzjIWdfiHiu+ydXn3d+iPBPuiIZGqOP2go4toRbVSC/xHHWqJz0tJSSaG0b8xOOzDEzxKW0uaWb/g5Gcd+W7f3qJ4C4KXa6K62X35azcKm8xhmse8bb0zAZHwBuFCgw927It16rDOepmY2KF3hvKT4rlEOwxzHMYc6YGIUupK2c/JUNNSXAskmF0kD4feyfkW7fCwEctjYCJWmFsyOhs3sRLe4vD/xA8fwJxFI8Xa5jT5papET2FeD3VTfOfEXHoedP+g5Q==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:13 GMT; Max-Age=31536000; Secure
bm_sz=BB1740324692013891B01E530B142ADC~YAAQhAplX6rbms6FAQAAmFT3+RJMZVzEXaSIH1JTBA/9JJKb2+qIEExklxY3g0FM03w3+dVg2g9nicSxY9YxEaIX3Im6wj/eGdjTZFe0G65v5WneW8D4vSW+qFaW4aP5RkdyLytnYGV8EvH9ZfBj1P47g8t9DQ18xhzaE+RW6+oUsc4rw9TNzO+sd66VDU+iv8IacnpMPvfvKR13beE3d6rqmbaxpvLSiwCQe0SnSQnNCHws1TpXc7G8M937MlbUd3jQtAiEaQpLShEmB9SRvmZ5ilGVHHYhC9jKT40UoYgQQ54NkP1u~3618098~3163715; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:13 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
35.241.45.82200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP 35.241.45.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2426
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 20:00:13 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://bgitopazdowntown.ddireal.vn
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-5llb
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
35.241.45.82200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP 35.241.45.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2186
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 20:00:13 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://bgitopazdowntown.ddireal.vn
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-mngg
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2225
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755833836
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=ruBag35Rg%2fKEPZj5H8OWjA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=ruBag35Rg%2fKEPZj5H8OWjA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=F1DE14BF398A928D9A9BB4BD0D3C860D~-1~YAAQhAplX6/bms6FAQAAKVX3+QlSF2ZsRR1HMafeZBmcJaqTZrxqvcTFjjnJ7usJye73JN16Q6WpN/CTrKFnhk+P96rFAgxprMmvLpKUUYdUZjYF1+a/oKcvtVtcJY5uTy5DQbes88KWbCHwPlxLXBhgc/ZZhxDDnw6GBPQ2Xd9HW6fXkhs66t7xhoEYrgkKf1HWAXt+ZYm5p76LE1mqvbH9BD+v7lG6Wn9CoqtkngWUJlq6ucuZbqgU9ytHuUaqCyNwzS4h3ofQTPzDa5RuHvTJjq/y3fxeCZJ/Y8QLFOjQp1FeYe/Y5zGYEU+IZ8xJlR0g+e9HeREGELz2dCPn60A2zficDx1KY0QeoUF0FHalM0hIW8dE0fYeA2FJKQ7Gkw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=82932CBD003D6D4BF4209B01DC80172E~YAAQhAplX7Dbms6FAQAAKVX3+RKNh+yI/i5y8XgIHZBgIcMmwYESphGzSq/54VaJZK3PzXHZwyZFfkLGH9OqsIQpUXzuUrunC6IkaBSHdRROYo6qKnh3PPsdT5mRY8vvH/DyWgm16RHRy7qE4DvoILJ84Rq2MCWwzCcsCinmAj3PdHDndj1uopg3J37oSba2lygrbZYTu0lrDh9oB8KwC34ybeIRlXeD79ykJGOtXFwWpFu8Y4BxkONGHSpeikYirgXZUwr7N7MWqLSNOdbiSn5BaYSTTdbmrKoiGs2JxS2Xu3Ti+BlF~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2273
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755186657
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=BqIn9pQo0ct6qkNWQkAD3g%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=BqIn9pQo0ct6qkNWQkAD3g%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=237DD711EB13F559ADD6EE9561E8FEB9~-1~YAAQhAplX7fbms6FAQAA+VX3+QlMvG7Dg8YI5K/9TpppFKodxGts2qgOCuNv7CsOroMkUmEzTEaP3pv4bL8mQ0IsIZyki5T5dbBT8cJfglo479OJEGVLb/qbrdYO0H4I+VvIaeTIwow9q0piVzi+oI9CuHmJaFhfPdcKqiCy6Zy8+IZaLGL1okC+sC0pgDlJeuqyO75nyNiJlVGK/c4QyvmU9Qc/HQgo5/QlmYFLKFsCiJbgfnEv8Sy6Wd+1pMDC9XTFOCjDcGsR2d0oOt8MwCwC7TPD4j3WHIfn2PVCr5wc8qj7cP+URev7fLZBam0JfW4oEd+f3CPzWFPL6iwVkZSz+POrYCAKUpnh073HOfGKOlT5Utb6ScNEm8hCXWE8AQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=2AD952C8A5D83C3B0F5E072F3F9FDC30~YAAQhAplX7jbms6FAQAA+VX3+RLWq6xH4TwpHLE9TR7JjWwshBD0Uoeya7x57EPS+w7EOPGdLo8/Lb5r2sujL5NYkB113I6SMAgq8dih9BeP/8zur0MVgg2xySgPbXSbIEo0FzeohUlkx1Am/vhxRvbRkHQcoyKAmUZTVTgGV0q95RUJMZ3p3cc5vViHwMsA0+57E1lp18htSqCp9agth3MdsTrXMvAcDfXTU5Nw5aM5ucuZTn3cupSuFwAeMvBYmDNwrO8KFRB9vN61ZV/E8rAARoTm7RKM8dkFGfRxKDqLVwh4B9TX~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=20&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=bqymopiydmhrveir&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
95.101.10.136200 OK 80 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=20&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=bqymopiydmhrveir&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash da9ed10c3632f7e56167f57f2d5be094
56f4f7a27a8e364eabde85664210e4e890ab6d21
515ea319afb620121672401b80b1c9337c3e1efbd589a317d2284fe12d1e48a2
GET /AIDO/vyHb?d=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%3D%3D&cid=20&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=bqymopiydmhrveir&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 80
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=rneRtdigVaDuN25Gz1J6WGIBnqcdNZt5G9rHRhPCePc%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:14 GMT;Httponly; Secure
_abck=94BCFD59E392055CE2E055D1E77ECFD0~-1~YAAQhAplX7Tbms6FAQAA6VX3+QnkiIBB2X+F/qiKXb9xnBrNKXV054wTgIbKfH2de4/xk13Qc0h10x0fnCNHuJ3eTpk6FtNbbTkF5Gf0fxIjskI8b25pvy+2DKXIYp64aHxohxFQhah8A4ueA+OxiKRSIyf6nopUtY1SVen4RqsAPHHgTGppjUZP+j/pWWAj4QSY0DprwWkzXnvgJAW6VPIoQNf+41IaU5sHZOpMXRwytg471Oha/yWvy6bh53E81bwFf2uccrmWCtijIBr8PoLCUVK0uPUrZKW5IaIOn+HqB1Gphy0gzTzWCBaVes2ZTlVXN22tXAJM0zxDy9Oi1H6wQZw4eafFwgrjb7El5YBu0VP7RdCC6GCS+KvLgrvCoA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=CEBC58A667DBF408534D894B0580130E~YAAQhAplX7Xbms6FAQAA6VX3+RJimvwlOC/OPK1apCQtvFpVarRxnHdrwEyBXMy6+KH72IMZwu20g6GeG2IURMGK+cyZ1d/Y10gibteGEhSauL0/uxH6Jx41IDoAbYF11im13wL1JJqvKBClxY8JZiO8Z/75wCZEzl623cWBtZ/rLCk9CmzC6fBA6dQzL0lawbcD+CcUsMPpl2epoetTCpwaNAmDLpSr5q3mNhyZaxbh6iI9nZoS32fhpRk3XZALJFjKWTZjVbE3zoX24UlBvq5UeIT6PsbQPpYQDPHqycdE7AuXsm4b~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2639
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=9Y2T%2fWccwAsz9jHZzcuhpg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=9Y2T%2fWccwAsz9jHZzcuhpg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=D77CC6A20203700F2371381C0E45FB9B~-1~YAAQhAplX7rbms6FAQAAW1b3+QkRc+RaLG/u0yoaDtf9lhunQcAoxG2EbUucVX3FbwMa2M57WO7gkWNPD7mSjOX6/54jwPKoHVOvLWkGokNRomlUqbhGFQmco484vSO2uWwPgC85OCOK9nUutqmi58AioHHeJYDNuDysUqp3R0uzFAVVe5zTo+QcjlTteJ/6VFVFcbBCr5gw6OxeYgVoApIugOMI6h2KTfUYRI47b+8AxvJhI/1I/bSrQ7BzUF56r7iJTVHZlb0zVeWPiNDpULwO91m5C9QqyMmTJy0XC+nrQwKWSwmd9AdRURjXT1rjDfzlSkVJW8bvMDmMiT41Q+BVsulLiURU9Ep6s9iddrJb+0HTSh1ocY92ezflA+FPeQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=7D10D6F715923CFFC41CEF7F6A27EC4F~YAAQhAplX7vbms6FAQAAW1b3+RIicD4Ce+1K2pBjAI3RSz0wJhCZjH23tTBHDHlM+qe/NHMj6vsb4ACByTkMW6jPOKYBOa3Q86TCc6Kphyi2xrkmAyo6VsZ7B/g/+r2V8l/8hX0w0UJGssYkYhcGpDh7FabqH/ZldqPGhzJcuz+KriDM9EqUd8BHCXs7xbKapq9HL9VCg5hYAqcxcGAljI2BS7wMPzprZHRNi+suzIJQFw9JBdqbzIuDF08jm6kcCpaVE2BpCQRgiJZKUCQng3fnb85qbLfPtzpU1j7amjnQ0FD0i3r7~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2514
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755833836
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=+JoR3MgjCED+fClWChFYww%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=+JoR3MgjCED+fClWChFYww%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=A6FBA8E095730C52B25073F3B4621A04~-1~YAAQhAplX77bms6FAQAASlf3+QkUOHiFvetDNeaUipL/r7EwBFKprVhl0kXDDVl89fdTCeVbooLcdQ6jF9GCGD6MHp/Q2b7HM3LIvmYcoTjmNANrg3s57iWrIhDvo57Kezizi6NbGdl9/MB3MIMZwbOXd5FhPMSpfikEiQmVZ5yCaAQbKeMf/QkIFQcTgK3otGex/YNApr89u40j8lXzS8BW9QQWKUxnzbSNNAkiJlL2oQoJDlEP6jT5a2ZnYhPWTe2FGSI61xJSpRNqNkkrWjz7pnwcrf+1mi7jarvJ1jDdwooxzOd51851/bTYJBvCvGhc7nc5bMcWHQag5EuQrpkqZy+/7P4fgn1ro6ktUYi3+dNWrWTNqIRVoctSnjYOLA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=508D016D0864F1C29838394EE12D19D0~YAAQhAplX7/bms6FAQAASlf3+RJVYBiOKPrEitB0VjGS7YazgsqVXyAVNDL99TRTOEyPawBBeQl3CXxdD76UqEXvSLBMjZ5OGMjxMRuPNTACEVkGQReMk9+QgKQwVDpxoXmR4sV7HUvaxPz2zVOJBSD/gPmk/lQJIn0qDin9AfWInhRltVBwYpc7B3kFpBS8uPwtd1j1mtku1P3lQrvWir2dVGZSvUwtzPHRMxI4CzJFtU4FyImVKF4vzW0KVP0UB2to677/Z6fRYU3/o7SJZI+N9mpQzyOEhIo+0E2jgJP181Jt/fIB~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/ay6u?d=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&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=fgsrtizatvmcdgwn&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
95.101.10.136200 OK 80 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/ay6u?d=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&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=fgsrtizatvmcdgwn&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash a3fc668f8138c5f38d9d0fe7d812e72c
a827cf9bf2a5e73ba0b401bd525fe1363bce3474
02b61d974a6f50d08b61c5413dad15ac7ade43d047a249b91707825d074f122f
GET /AIDO/ay6u?d=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&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=fgsrtizatvmcdgwn&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 80
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=5lswIho1KD9jKhWESIudJBDnpYmyh4GBQygOLbtm4JV1oHYBXwjzB%2fjipNz1WXfe; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:14 GMT;Httponly; Secure
_abck=AAA26C00CAB4BAD731A7709109E09C0D~-1~YAAQhAplX8Xbms6FAQAA3Vf3+QntCMB6UD9GtKOsfbIHLyS49uirbY6ddUVpRYoxUKgDRFZMurR9IPE4AF5VxQALfE8zJKYCYvoQco2sTShtDL/+b1DCPLXi4+Iye1d6zr0ZLw0G8Vi5Ip3kz/rvMSHHP9/GZyoTwW/abZ0ZzWnQ0khet5FUmXR4e+kMWb6KLBmR5ok2fDLYMYXCF+IX2MSXf6d3ZTVVFT2BPhe+QZ9cG+85RohA/uh4Vddj/wzvSt0T9wcMFWnKxIrhiXPsvhTgepDSx52lcP6bPXmGOv8u5Dep78xu7lWLwMutgbgdy3lvwlLkwoOjt00Px6p6MKM1eZdCYPoSsC0DcVKZ6POo5iiW8svh7yuILwQuaylSSA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=779C0E691FC5B0692755A2A1CE0D6E59~YAAQhAplX8bbms6FAQAA3Vf3+RKEnCyr98zt6hg899BlUSEBbp2OOE9RVmYGr+zjtyeHJKnUtKSA7YnHC80MuiBTp1e9zz6sZpvqjIADH5UxUwaBBDSLFXRMUQAUbRa6s3aPhZHBGuU+rBv/mIWJ9+iNpWVIGKJr7V/XrbtK959DavKv/P/AmL/i17fgo0rPUirmGZ74xZa0CSo0rQHCywRpp3ExsaE9SaUrnztGqmoFSUNngqhTlJkHGZ4UhZOPNFUhVNiTOco3Kl/q3VLW3Pg4W/xGCfhMhassCNlBcY5gPNoFrOk3~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2747
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755186657
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=tfKqzSG6zjBxNMiy%2fJ1m1w%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=tfKqzSG6zjBxNMiy%2fJ1m1w%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=F02CAFEFD3D8EBC7382944CAC30778F0~-1~YAAQhAplX8fbms6FAQAAEFj3+Ql5g4mMPZfUgOwuJPNli1Izy0DoGdb0Hayi4YtBWtrn2BxE+wgi2zz5feir5HaUG5tw5jBj0dFz88k5God1V/uq6iPGsx5Qtmb1n+zwFjpYeVuoED0tqLVuxjsdueDq2NUJmKguWb0zUpZ5Yf7Fjjev9YFKzhZ2c09QqStbrnEPNCv3U2EMNWSwQtD9krAOHe88K33KrTaDnyjHOGisHD5S+jIhe/FQ3fIVTxyuxtq96KBqi62tNSmh3GyOX7ex9/Y7FAme7vtHHyxrSzRqPrd6G4D28uk2mrrsSKVpJSRoMM4+aXivdj7xpC12rtVFzOLQgEgr6fNW+v4C/yLh5WSYY3Nx7jA3IeI4iFzKFw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=7064DE3E287578FAACE0FD5B5681F33A~YAAQhAplX8jbms6FAQAAEFj3+RIebGrHI5tSC4SRLTH+GjkHX7sr1ve/NzDf/WQdKVFq8sIBPHZIg7PBmUISWMHVi8AB03GNPHo8DMNgHMxUkL2HL3CMsXu6pQFuo7GTa29FPiPWv7I8F8RH5cGPbwCCE3G0FAXQbi1hEv3BgBP1ofHObeoi9bgGxDWiFgIhJcmZ2bPuS9u4qA4X+AssgzHnnpVOzgAoinWOAAoSn67KqdLuLmbD6/V6YbIVz9QIMzLmGQm7rWHiFlhP+fW7zgaRf9ag9i0gss/3k2AW/RMvb6hBL9HD~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3017
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:14 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=gFKXqa4mnY748uZwwFvKOA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=gFKXqa4mnY748uZwwFvKOA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=19062453E31F29D43B779A0A8563B23C~-1~YAAQhAplX8nbms6FAQAAY1j3+QkRsIzwpkF3mPVkWEXRkJG/8VYW+iPTE0Lw/1HCsZrp8RUwVL1HShYIWzBYGfRLIdyrD99DBkxxqvNVEF9/6EpVT9x0c8xan+fgVMWkJ7jLpZyUiy9f3+Mw10bZaxPVakbDKopHNUi5SwneELGFktDJNszGz+cOXhpJs9/QLoQ7V9FZfOXuJRebQXvMFuIXbs7Sgo+6MF+HhYsqszSbHR6a0CRGRHP3VVQ8YZVijZLB88FRDc8tVHn0WsXMnvGd7j704hSVKO3FngvpT09Y2LQ+70h1e5AGdZNPbB2eVlPpxXTAwJRoWf5DwI9AnrZKaozgGt54SN5xudI5K5ZgKbSwcqAgYuVen4NAgI+Nxg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:14 GMT; Max-Age=31536000; Secure
bm_sz=285B8A2358503310F1E50080687B75A2~YAAQhAplX8rbms6FAQAAY1j3+RIXeOC6jxUCJf9WeHgPoGBsY9WwQO0ujCBqByeuadmxHBduNHX96rxPenvaUuzxC8tIBGkYJ4T7zV1xSZ+nNH58h4hA7Ff7/Be7KncvnWNQDWg5BZ3vdJsZ3aoTjBrPouUNxs5s+W/dQMd7Tdn+Rt4b9St0OOYtTZDqTHpTwK/YLaZ85na+sY6WNAVVV83PVTdhRm8KckzEHwKj2jSKVsJtwH6eHT073fJOXIVV4P0MWTOOJcMbFARIXAnwJMsfmvAVHRA+Ucum/MJLLPCYuSbOeMnO~4604216~4600627; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:14 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2635
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755833836
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=hSpxuguZddSWP753DA20Kw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=hSpxuguZddSWP753DA20Kw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=19D5595EBF2F7D45E6396208A80E336D~-1~YAAQhAplX9Dbms6FAQAAM1n3+QmuvYn8jIa1tgKYpQTov8Osbx3xH86dnGafSP3CR3dH6o2iX0+K1MR8Vhe1NFIdfTkoNItcij3KGaYLss8z8D7eKmNHdm6jv2AMjy3YhRECR9k+b9+Qepl8NDbIA1xbGD+hEi3hDE1WHKwfEMfel+oBvwnMB8RTe6IxYokJ3C2les4OItBO9+W5SfBjg+vPz8wLYC/FqqWzC6ZYU1eEyMdbvkuR3ojPKD5kYahKmbBpyGJjC9oM0fCUspgrMB7hPzRQx24EVli8aL2omwqjUqWFkOxDZAb1n5SkVMKBClLXOj+DvXcmdRWNYd+gkvx8lKJMfIAKw/ssbSemu+Wn5xj3EKCAt+5TVrePqE+a1A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:15 GMT; Max-Age=31536000; Secure
bm_sz=D6FF8FFD748A17AE2986F56A57751B6E~YAAQhAplX9Hbms6FAQAAM1n3+RKIVX6/8nvNfP70Yvd4uZGRZHoZPPxLKYLDPIChweo37an7F9giDk/2FDq7pzzTFJzU9yFVD05CURCX5faBeIOXAPIMuLALA4AfNFbghVSxvFUJKvfG/ClyTAxexhf5YbeZcn7ZRYWhK2yWTtExBujaL7yZ8DEYVW1nxZAiFMwoli6a3v+qnkFKlDsdAqhnIOrvvv3035qCn+2VZL6VGkSqzRFo2cnrzlZIoDeihlDFYnbdsRdVH+Gu5WqDEcp/GMKdErBFHTY7kemHIVP/nRfRgH03~4338755~4601650; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:15 GMT; Max-Age=14400
connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
95.101.10.136201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /tKj19wXM5F/KS/s4nzYr__/9k3afcVX3O/EltsWg/YyFxTzFU/a0E HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3059
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwentythree%2Fstyles%2Fwells%2Femailerror.php&icid=167493601755186657
Cookie: ndcd=wc1.1.w-729460.1.2.S6bi6Eq0HJtI1a1Kv6hBxQ%252C%252C.IneGnBF3RITBAuv5zcow497g2k19d-fzZTPIwFtjDwRMEdAFOUgsY_2DxaH5W_dg5o_dqZiBwh0ohl-HAABorkFMZd0m5oxtdtrQXKyfPCNT9MjSMzt5FP-HfZWDfZdR-fhI8tNUhx2WFHp4V0WxjtF8UQb__4UXt7HTdvna1mcl-ewx72UEf2ZbH1dPjZOl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sat, 28 Jan 2023 20:00:15 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=IokMrZwDYvtqXYdh%2f5s5+A%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=IokMrZwDYvtqXYdh%2f5s5+A%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=BB6266DD569700789F80975D1DAA0316~-1~YAAQhAplX9Tbms6FAQAA71n3+QkwCbNI5o3414fUF7nTEklpAeeCjlTBRQlEphThx1P2oqgXuzHNECO85Vc6awpNqd4VT1hs0BNDh4SJxn7u0grasklNEE3sjUmBf01jTvgWKQGZXhnWH7IiLPb4WZ0TYgvMX3/C9AJsobfQ4i/hmhAyU8VpeglddCM0RCZ7R2CIxuzIRwDNWXEOIocKaU0PI8pMw7klrNCaWcGWN7bdD/cJ3g/dbDwuGpWRqR6pnEnu5/2EODFMv37d7FuL1m6mrU9HfLl3czH6inhsiRxuntQbXc0T/hkP4ndClIBMKIkXVtc+6xw45c5ucfqYtTH3gqlvL4tPX6Heqo3Ml0zPuXqPWw5xIkpMkMRtvbWo4A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Sun, 28 Jan 2024 20:00:15 GMT; Max-Age=31536000; Secure
bm_sz=A7B31D2652CFDAD64FE7B2182B56622B~YAAQhAplX9Xbms6FAQAA71n3+RLiGxVrT7SMeJ+N5KSW2T6i3TNUYjTkSyWeYO8RbGvvR12sB2ntGT6k+z4/z61RwnKldtpluxpzCkeL8RwHsu+u027sfu9nkQDXqoUhkplszVA0Yc6LiASBS/qANj3o7VybJ5r3A0AHAwrL8KD30rJv3AxU4GtxRHHtc/slO7GKG3j2ZGPs9NfEqRw99j8bqLMd8taeKqURZOV8D+lmwK5SB3qiJSU6dqYC7vPuWdUPMii54i8tlP+zwgMVqSJaAEQCZc5a8bgm/+/mtbSzs/18YAtX~4338755~4601650; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 00:00:15 GMT; Max-Age=14400
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js
95.101.10.136200 OK 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js
IP 95.101.10.136:0
ASN #20940 Akamai International B.V.
GET /auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 206303
Last-Modified: Wed, 08 Jun 2022 01:32:21 GMT
Vary: Accept-Encoding
ETag: "629ffc25-325df"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sat, 28 Jan 2023 20:00:12 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=tiozKM1vXlPvhvwaCiKkirPZ1h49pS+j0rtDG0yt20Q%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sat, 28 Jan 2023 20:15:11 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains