r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8378
Expires: Wed, 08 Feb 2023 16:17:15 GMT
Date: Wed, 08 Feb 2023 13:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2419
Expires: Wed, 08 Feb 2023 14:37:56 GMT
Date: Wed, 08 Feb 2023 13:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12680
Expires: Wed, 08 Feb 2023 17:28:57 GMT
Date: Wed, 08 Feb 2023 13:57:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 13:36:40 GMT
content-type: application/json
age: 1257
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Gz2AuiTU9xpBpeHiSF5a4Eb2dSeFm3XJ+a+sKXG8RI5Cs6cP6U04+wIRyan1/xSc/twnty/LQ8c+/RfiiGmckg==
x-amz-request-id: 2B7NYWDX533GD2PN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 13:45:59 GMT
age: 698
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
neutrinocms.com/otp.html
45.33.28.35301 Moved Permanently 162 B IP 45.33.28.35:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /otp.html HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 08 Feb 2023 13:57:37 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://neutrinocms.com/otp.html
Strict-Transport-Security: max-age=31536000
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:37 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 13:14:52 GMT
age: 2565
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4114ccf4263aadbfdae8546072e8e559
d5418fc1dbe4289a94dcc824f8b3a79e881afaed
c7f131515eab6f8ec309e9b536f6b0d4845945b8ad0c625d18d9d363f1c7c12d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C7F131515EAB6F8EC309E9B536F6B0D4845945B8AD0C625D18D9D363F1C7C12D"
Last-Modified: Tue, 07 Feb 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21581
Expires: Wed, 08 Feb 2023 19:57:18 GMT
Date: Wed, 08 Feb 2023 13:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4450
Expires: Wed, 08 Feb 2023 15:11:47 GMT
Date: Wed, 08 Feb 2023 13:57:37 GMT
Connection: keep-alive
neutrinocms.com/index_files/cookie-id.js
45.33.28.35200 OK 65 B URL HTTP/2 neutrinocms.com/index_files/cookie-id.js
IP 45.33.28.35:0
File type ASCII text, with no line terminators
Hash d2673e00a77d014384b757ea9778795a
e969e2f948253544a72f74de9e0cab193415594a
51f380e4abbdf4b680c54f673835d4dd976e5355955a71f3b12191dbff588a82
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/cookie-id.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
content-length: 65
last-modified: Thu, 02 Feb 2023 18:53:51 GMT
etag: "63dc06bf-41"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.203.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.203.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Kx0T2bXJseh+TnuopUtEFw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IHWwKfKOTr5VcdYeOrCmEGFmEvw=
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7d513ab7120e35e18f1d0346c8aa7270
ec8bdb63518f17f309604406b5462942d4bd1012
85d92dca682b8a918d423839c8f7c6464e14980f413eb2ce8ac37bd8f32cf81f
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "85D92DCA682B8A918D423839C8F7C6464E14980F413EB2CE8AC37BD8F32CF81F"
Last-Modified: Wed, 08 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3525
Expires: Wed, 08 Feb 2023 14:56:23 GMT
Date: Wed, 08 Feb 2023 13:57:38 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7d513ab7120e35e18f1d0346c8aa7270
ec8bdb63518f17f309604406b5462942d4bd1012
85d92dca682b8a918d423839c8f7c6464e14980f413eb2ce8ac37bd8f32cf81f
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "85D92DCA682B8A918D423839C8F7C6464E14980F413EB2CE8AC37BD8F32CF81F"
Last-Modified: Wed, 08 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3536
Expires: Wed, 08 Feb 2023 14:56:34 GMT
Date: Wed, 08 Feb 2023 13:57:38 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7d513ab7120e35e18f1d0346c8aa7270
ec8bdb63518f17f309604406b5462942d4bd1012
85d92dca682b8a918d423839c8f7c6464e14980f413eb2ce8ac37bd8f32cf81f
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "85D92DCA682B8A918D423839C8F7C6464E14980F413EB2CE8AC37BD8F32CF81F"
Last-Modified: Wed, 08 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3525
Expires: Wed, 08 Feb 2023 14:56:23 GMT
Date: Wed, 08 Feb 2023 13:57:38 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7d513ab7120e35e18f1d0346c8aa7270
ec8bdb63518f17f309604406b5462942d4bd1012
85d92dca682b8a918d423839c8f7c6464e14980f413eb2ce8ac37bd8f32cf81f
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "85D92DCA682B8A918D423839C8F7C6464E14980F413EB2CE8AC37BD8F32CF81F"
Last-Modified: Wed, 08 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3525
Expires: Wed, 08 Feb 2023 14:56:23 GMT
Date: Wed, 08 Feb 2023 13:57:38 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7d513ab7120e35e18f1d0346c8aa7270
ec8bdb63518f17f309604406b5462942d4bd1012
85d92dca682b8a918d423839c8f7c6464e14980f413eb2ce8ac37bd8f32cf81f
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "85D92DCA682B8A918D423839C8F7C6464E14980F413EB2CE8AC37BD8F32CF81F"
Last-Modified: Wed, 08 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3525
Expires: Wed, 08 Feb 2023 14:56:23 GMT
Date: Wed, 08 Feb 2023 13:57:38 GMT
Connection: keep-alive
www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-deposits-en-checking-mh_dep_bau_3299739_1440_gc.webp
192.229.233.230200 OK 23 kB URL HTTP/2 www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-deposits-en-checking-mh_dep_bau_3299739_1440_gc.webp
IP 192.229.233.230:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x703, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3834cc57f42041b118851ff2d79cf726
313ac6e442a818d3273df0f6b57e8ae8bc6d318f
7501b557fd1c3adb53e850492778a628c260e97a3b9cabd8d3793c66fba1aae3
GET /hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-deposits-en-checking-mh_dep_bau_3299739_1440_gc.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 1045093
cache-control: max-age=26920000, public
content-type: application/octet-stream
date: Wed, 08 Feb 2023 13:57:38 GMT
etag: "5a2c-5eac1e368f4e0"
expires: Wed, 08 Feb 2023 13:57:39 GMT
last-modified: Tue, 11 Oct 2022 13:02:28 GMT
server: ECS (ska/F704)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9O37eb3h-lxK0TcgOz7BQAAASQ
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 23084
X-Firefox-Spdy: h2
www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-super-highlights-consumer-cards-en-cc_shl_card_722_3935994_e.webp
192.229.233.230200 OK 4.9 kB URL HTTP/2 www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-super-highlights-consumer-cards-en-cc_shl_card_722_3935994_e.webp
IP 192.229.233.230:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 722x352, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 459a092aa25094f9cb4eeb4eb42a5b22
d65596c1912c4917ba7f861b8c55f9309cf49bca
12e0f571a4b909173371efb85cb805256fbdca5a5dcf94ce4dc248fe9ba35ba0
GET /hp-assets/spa-assets/images/assets-images-site-hp-assets-super-highlights-consumer-cards-en-cc_shl_card_722_3935994_e.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 1088347
cache-control: max-age=26920000, public
content-type: application/octet-stream
date: Wed, 08 Feb 2023 13:57:38 GMT
etag: "1332-5eac1e45170c0"
expires: Wed, 08 Feb 2023 13:57:39 GMT
last-modified: Tue, 11 Oct 2022 13:02:43 GMT
server: ECS (ska/F710)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9MO9wMOKVRi4Be9xlyFpAAAAak
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 4914
X-Firefox-Spdy: h2
www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-super-highlights-consumer-enterprise-en-ent_shl_localjobskill_3556117_722_gc.webp
192.229.233.230200 OK 50 kB URL HTTP/2 www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-super-highlights-consumer-enterprise-en-ent_shl_localjobskill_3556117_722_gc.webp
IP 192.229.233.230:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 722x352, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 261dc91a8d07ff12c20a20ef42e76bac
1f4840eda87ae15841147abadc63617e0a6362a4
fead4f01103d794e16fb3736dfaa8adad84ace71b404ba542ee93cac5e8e2705
GET /hp-assets/spa-assets/images/assets-images-site-hp-assets-super-highlights-consumer-enterprise-en-ent_shl_localjobskill_3556117_722_gc.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 1093719
cache-control: max-age=26920000, public
content-type: application/octet-stream
date: Wed, 08 Feb 2023 13:57:38 GMT
etag: "c47e-5eac1ee11e20e"
expires: Wed, 08 Feb 2023 13:57:39 GMT
last-modified: Tue, 11 Oct 2022 13:05:27 GMT
server: ECS (ska/F71B)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9L5_EnBgbpyrsy33sLlbQAAAKQ
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 50302
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-hp-assets-offers-consumer-merrill-en-rebrand-merrill-me_l1nav_ret_planning_3539686_e.webp
192.229.233.230200 OK 614 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-hp-assets-offers-consumer-merrill-en-rebrand-merrill-me_l1nav_ret_planning_3539686_e.webp
IP 192.229.233.230:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 243x102, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0ec58b5439762a1e9ac5e2af4fac0fa6
735ba6861d3440ecf7bf11b5b0c2172a4b865aae
8faba458d243f473199f2d36b2954c66bf34c3ba5dd22992cac7b0f650e09277
GET /homepage/spa-assets/images/assets-images-site-hp-assets-offers-consumer-merrill-en-rebrand-merrill-me_l1nav_ret_planning_3539686_e.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 1097200
cache-control: max-age=26920000, public
content-type: application/octet-stream
date: Wed, 08 Feb 2023 13:57:38 GMT
etag: "266-5c28f74189d86"
expires: Wed, 08 Feb 2023 13:57:39 GMT
last-modified: Tue, 18 May 2021 00:04:27 GMT
server: ECS (ska/F709)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsYpygrrZEwXdc_7icfgAAATs
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 614
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-life-services-life-services_1440x552-CSXc8821e83.webp
192.229.233.230200 OK 9.8 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-life-services-life-services_1440x552-CSXc8821e83.webp
IP 192.229.233.230:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x552, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ade43a06c27f9d8a7b916fb9fc37348b
08acb8cbe0191293b1727d0b25d24d683355ca30
50e6b5d745d427304aca0397a7667ee1194621bd40a6e51d76afaa0deee37689
GET /homepage/spa-assets/images/assets-images-site-homepage-news-life-services-life-services_1440x552-CSXc8821e83.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 1097200
cache-control: max-age=26920000, public
content-type: application/octet-stream
date: Wed, 08 Feb 2023 13:57:38 GMT
etag: "2674-5b628573de02a"
expires: Wed, 08 Feb 2023 13:57:39 GMT
last-modified: Fri, 11 Dec 2020 04:01:02 GMT
server: ECS (ska/F70F)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsYuajUDmcqOET0OtEdAAAAHA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 9844
X-Firefox-Spdy: h2
neutrinocms.com/index_files/cc.go
45.33.28.35200 OK 30 kB URL HTTP/2 neutrinocms.com/index_files/cc.go
IP 45.33.28.35:0
File type ASCII text, with very long lines (4761)
Hash 2160423a59885889e29e0be982fdba78
4c073cf2b31d3aa5cf1808b055f4575c782f9329
2c5ee3eb37fdead4fc90f21afae4362c19a68c7ba4713f51d1940c8768e760da
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/cc.go HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/octet-stream
content-length: 30015
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
etag: "63dc06c0-753f"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/prod-_-homepage-content-personal-homepage_personal.js
45.33.28.35200 OK 3 B URL HTTP/2 neutrinocms.com/index_files/prod-_-homepage-content-personal-homepage_personal.js
IP 45.33.28.35:0
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/prod-_-homepage-content-personal-homepage_personal.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
content-length: 3
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
etag: "63dc06c0-3"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5cee7b98e5150c1f893636a54fc4a6a3
a4a5c0b5271d7489985e25bc9c5d912d4e2552d6
695a2faaf6485e37d403123c99b79a6c3cdf768592b487862cc23a10a6ab407e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6010
Cache-Control: max-age=150571
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 13:57:38 GMT
Etag: "63e33c03-1d7"
Expires: Fri, 10 Feb 2023 07:47:09 GMT
Last-Modified: Wed, 08 Feb 2023 06:06:59 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
52.213.97.196200 OK 104 B URL HTTP/1.1 dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
IP 52.213.97.196:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90a8ce4aa172e4b63430c93639257805
d30e7b2034df83180b28f024556a5534dce531c3
093ac6be731cba244fff837ea4fa57ab36e1fde5a5a53d9b36a467184eae87f5
GET /id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://neutrinocms.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-055e9ae9c.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 198
X-TID: wmsMd3KtRHg=
Content-Length: 104
Connection: keep-alive
neutrinocms.com/index_files/utag.v.js
45.33.28.35200 OK 2 B URL HTTP/2 neutrinocms.com/index_files/utag.v.js
IP 45.33.28.35:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/utag.v.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
content-length: 2
last-modified: Thu, 02 Feb 2023 18:53:54 GMT
etag: "63dc06c2-2"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg
45.33.28.35200 OK 3.5 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8501eddc227a8cd862db80fab40d73a6
ccc48cb6808011e2ed77a18e2646cf6e573a36d1
7e6ce497138ce47d8ab66d70c46d245e1261d7f2d3f1db3556eec0ca1c82e2ec
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 3472
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-d90"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-icons-get_app_interstitial_icon-CSXbef49635.svg
45.33.28.35200 OK 37 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-icons-get_app_interstitial_icon-CSXbef49635.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 1c7530637540557e2a818d755bb4b7ad
3121c1c647b9bb50960e4ca0e6f39835a5bc0fb6
ddc2154c0d608206ff9c64e5acb6e38a3f153e8a9939d846763ddf701424456d
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-icons-get_app_interstitial_icon-CSXbef49635.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 37062
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-90c6"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-icons-get_app_interstitial_lock-CSX6d401b45.svg
45.33.28.35200 OK 587 B URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-icons-get_app_interstitial_lock-CSX6d401b45.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (587), with no line terminators
Hash a7f2c7550ccc79e1d25dbfe6c756d2c1
3309818c64af0c7d39f36974049b0a48441565e8
46344c37451bf1505050f5ca9096e1d16686172250401bb04558f13eb5bb04f8
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-icons-get_app_interstitial_lock-CSX6d401b45.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 587
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-24b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-global-get-app-modal-Download_on_the_App_Store_Badge_US-UK_RGB_blk_092917-CSXd8fd3663.svg
45.33.28.35200 OK 7.3 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-global-get-app-modal-Download_on_the_App_Store_Badge_US-UK_RGB_blk_092917-CSXd8fd3663.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7318), with no line terminators
Hash 40db11c8ecf6a87ed4c2e1c22c80c44f
0aa261a4b0254f8374e11a34077067e6148505f2
3f1ea5c409c0d00088df9790fa7698929b4b8d242ec4372ab83fa8c3b969c692
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-global-get-app-modal-Download_on_the_App_Store_Badge_US-UK_RGB_blk_092917-CSXd8fd3663.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 7318
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-1c96"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-global-get-app-modal-google-play-badge-CSX89f9024.svg
45.33.28.35200 OK 5.0 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-global-get-app-modal-google-play-badge-CSX89f9024.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4993), with no line terminators
Hash d44334d84df12f4539734b402b40cc34
c46223399876b228fb4d6b57b8b7c63566bf2b31
1fb7690d7f2b1b600dbea5fbfce96198cae49ad0009fee412d96bc462a27eea9
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-global-get-app-modal-google-play-badge-CSX89f9024.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 4993
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-1381"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-icons-calendar-CSXef62d939.svg
45.33.28.35200 OK 1.2 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-icons-calendar-CSXef62d939.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1191), with no line terminators
Hash e43b829f9978a200921730c6af362a0b
d8f9f37123a55f5be33b6709474b5d02c42f8ee4
79266c36aad7737b74bb1a73c53b99e51c2cda5f7e5ac1e9c5f6178e5181159d
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-icons-calendar-CSXef62d939.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 1191
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-4a7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-logos-new_merrill_desktop_logo-CSX5347e4ce.svg
45.33.28.35200 OK 5.8 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-logos-new_merrill_desktop_logo-CSX5347e4ce.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2727)
Hash d3cc6af9faa7069724de8030ffd29173
8d3d23de9b40ee0e7d12e3f32158a9d4ccb07b95
2d9705dc449a9757f9b36ace6d7479eabcf2a90b210b400d49f7f8e7e4837d2e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-logos-new_merrill_desktop_logo-CSX5347e4ce.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 5791
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-169f"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-sign-in-module-hp-url-example-CSX3e076ebf.png
45.33.28.35200 OK 4.1 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-sign-in-module-hp-url-example-CSX3e076ebf.png
IP 45.33.28.35:0
File type PNG image data, 522 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 8e1041b5b2d8242c565725caf3adc033
96d3d32bc0b0f07acd69046e655ceeb05c5444ea
6d7ac293ab6a5f1f5bddc8d4e59602950fbfa5434d1b50e1a840eab9dd6b4b7c
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
GET /index_files/assets-images-site-homepage-sign-in-module-hp-url-example-CSX3e076ebf.png HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/png
content-length: 4102
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-1006"
expires: Fri, 10 Mar 2023 13:57:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-hp-assets-engagement-banner-consumer-checking_sticky1_arxc6bbjk-CSXf7303878.svg
45.33.28.35200 OK 362 B URL HTTP/2 neutrinocms.com/index_files/assets-images-site-hp-assets-engagement-banner-consumer-checking_sticky1_arxc6bbjk-CSXf7303878.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash d9d8539185488ef9a23b1cd60c045d00
38512c6a2030873498fc6a4444551324c6a3fcae
5b41be959960bc57d78792c7d148ff735931bc86bba28a10e8a1a3dbc2c1db3e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-hp-assets-engagement-banner-consumer-checking_sticky1_arxc6bbjk-CSXf7303878.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 362
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-16a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-other-en-erica-ab_erica_hl_arptkml8_icon.svg
45.33.28.35200 OK 481 B URL HTTP/2 neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-other-en-erica-ab_erica_hl_arptkml8_icon.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (331)
Hash a6f70311a0056b7ea6487320eb8adf3d
b6d72589bb0c9c40f5669d2f932e59ea9d1cda86
bc34c7db2d47912be7d3ead17913bc8a63aec66a21a0556f7a66d31d72931cb0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-hp-assets-highlights-consumer-other-en-erica-ab_erica_hl_arptkml8_icon.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 481
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-1e1"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-deposits-en-bau_chk-bofa_icon_bank2_186rgb.svg
45.33.28.35200 OK 855 B URL HTTP/2 neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-deposits-en-bau_chk-bofa_icon_bank2_186rgb.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (855), with no line terminators
Hash 9fdc858e6b9743a0b2e5a8e714268d17
e20125bc64e8ea3d0d4978dbec02c11b54d665b4
1fe6e6bc18b96e0b9e8a37b44fa11858d7bf28107360c6990d2221539e5ec692
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-hp-assets-highlights-consumer-deposits-en-bau_chk-bofa_icon_bank2_186rgb.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 855
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-357"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-bamd-en-hl_bamd_icon_arytj39n_e.svg
45.33.28.35200 OK 793 B URL HTTP/2 neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-bamd-en-hl_bamd_icon_arytj39n_e.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (398)
Hash 2af6752c2a61c53b349d255951b713d7
b2405dcdf4c99ea424dbc666686cd0682a6114f5
a7a11e74f87a00b3ee8313de3124d565230c01c141f7d8527cd00be52e80e985
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-hp-assets-highlights-consumer-bamd-en-hl_bamd_icon_arytj39n_e.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 793
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
etag: "63dc06c3-319"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-merrill-en-merrill_rebrand_logo.svg
45.33.28.35200 OK 14 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-hp-assets-highlights-consumer-merrill-en-merrill_rebrand_logo.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (7267)
Hash 42fc15041dc237e91c6971e863c7f241
0737f3ced75d647a489447c871b43b6034cb9964
637f24f45d4640101ad59c9467921a9451dfeb40670e8a2526424ba8f2033a3e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-hp-assets-highlights-consumer-merrill-en-merrill_rebrand_logo.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 13929
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-3669"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_a-CSX60f66bca.svg
45.33.28.35200 OK 1.2 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_a-CSX60f66bca.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (549)
Hash 4f411ec5ae8270fd11f1171347bff381
1ed9ef1ab64df86affb2f86fee0eee764bbb3016
176e130cc23f7e73033ef6c5839dd700c86098612e5be6319780f2f43a7a7096
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_a-CSX60f66bca.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 1187
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-4a3"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_b-CSX6a37bb5c.svg
45.33.28.35200 OK 3.1 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_b-CSX6a37bb5c.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2161)
Hash 6e01087c95ab7f3245d2d35ccf1916e9
c9819f4343bc94fc7a7d8822c220fbb7a2cc1f5d
e036531cbd19e6e8f80fdca109170baf5be5ca9674010ec2aa80133cb4aae248
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_b-CSX6a37bb5c.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 3116
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-c2c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_c-CSX2f2a3cfb.svg
45.33.28.35200 OK 1.5 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_c-CSX2f2a3cfb.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (546)
Hash 5e1d0177c12c573d0fdcc7adf00283d0
1fa342b2ae17abadcb8b56326b91ef58b8aaa5f3
2c228d80fd9f494f742482964722a207fbee07152fc11b0539489d7d44cd059f
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_c-CSX2f2a3cfb.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 1540
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-604"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_d-CSX7684a6de.svg
45.33.28.35200 OK 3.1 kB URL HTTP/2 neutrinocms.com/index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_d-CSX7684a6de.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2432)
Hash 9e424e99637454ab6995e1193f8a410d
90f5a86ed1d0296d84cdf455e9e0eeca281cedbd
885e35ddc0dd817e8aa4116399ecc382c6e8a726215ad92ddf72c93463cd52aa
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /index_files/assets-images-site-homepage-icons-ent_edu_bac_4953168_icon_gc_d-CSX7684a6de.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 3105
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-c21"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/poweredBy_ot_logo.svg
45.33.28.35200 OK 3.0 kB URL HTTP/2 neutrinocms.com/index_files/poweredBy_ot_logo.svg
IP 45.33.28.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2998), with no line terminators
Hash 2e9b9ac8be368c1efcc51965c74be43b
dde87f63ecbaeb97c5708ced6ffd0e7de5a806c0
49b9b4996d1ff0a8e3de643a0c623255bf631f298f2799b949c29de93926ee7a
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/poweredBy_ot_logo.svg HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/svg+xml
content-length: 2998
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-bb6"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
neutrinocms.com/index_files/BOA.PNG
45.33.28.35200 OK 71 kB URL HTTP/2 neutrinocms.com/index_files/BOA.PNG
IP 45.33.28.35:0
File type PNG image data, 849 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ef07b55c4a1561c9271f57031a51a59
5a9dfd0174d1ba6b8784f928c98379f08cd711af
69d3432300ba1610b3b7b677b5e821630636aae7f61c01e1058158e69701b2d5
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/BOA.PNG HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: image/png
content-length: 71361
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-116c1"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
tags.tiqcdn.com/dle/bofa/main/prod-_-homepage-content-personal-homepage_personal.js
23.38.200.249200 OK 3 B URL HTTP/2 tags.tiqcdn.com/dle/bofa/main/prod-_-homepage-content-personal-homepage_personal.js
IP 23.38.200.249:0
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
GET /dle/bofa/main/prod-_-homepage-content-personal-homepage_personal.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MnMdkfPtmfGVSb2iJ9R3SG5a1Eby0EfHY21Rirrr48pN9w+2ivldofdWW3zfmu4Afp9MeausmYg=
x-amz-request-id: 36Y77BQ6QTYMB4M5
last-modified: Thu, 02 Feb 2017 22:12:19 GMT
etag: "b519d08ef66fd54910edbedba6181ec2"
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
content-length: 3
cache-control: max-age=300
expires: Wed, 08 Feb 2023 14:02:38 GMT
date: Wed, 08 Feb 2023 13:57:38 GMT
X-Firefox-Spdy: h2
neutrinocms.com/index_files/otSDKStub.js/consent/d41b15d6-b9f5-4415-94c4-c405e1190fde/d41b15d6-b9f5-4415-94c4-c405e1190fde.json
45.33.28.35404 Not Found 146 B URL HTTP/2 neutrinocms.com/index_files/otSDKStub.js/consent/d41b15d6-b9f5-4415-94c4-c405e1190fde/d41b15d6-b9f5-4415-94c4-c405e1190fde.json
IP 45.33.28.35:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/otSDKStub.js/consent/d41b15d6-b9f5-4415-94c4-c405e1190fde/d41b15d6-b9f5-4415-94c4-c405e1190fde.json HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Cookie: bactm_lts=%7B%22adobeMID%22%3A%7B%22errors%22%3A%5B%7B%22code%22%3A198%2C%22msg%22%3A%22Requests%20from%20this%20country%20are%20blocked%20by%20partner%22%7D%5D%7D%7D; utag_main=v_id:0186315228460000973c8814208400050002000900918$_sn:1$_se:1$_ss:1$_st:1675866513287$ses_id:1675864713287%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8762
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 13:57:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8762
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 13:57:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8762
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 13:57:39 GMT
Connection: keep-alive
neutrinocms.com/index_files/babel-polyfill.js
45.33.28.35200 OK 48 kB URL HTTP/2 neutrinocms.com/index_files/babel-polyfill.js
IP 45.33.28.35:0
Hash 44aae56ae91970d5d58cbd9f8293e97d
74dfc917150f12f60ff626adf8e26ead211e60be
6683b4990648a17548c22ac98aa32e56f330bdec2be39a14a116544b1afcc3c0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/babel-polyfill.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:51 GMT
vary: Accept-Encoding
etag: W/"63dc06bf-17e38"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xc32O6lBfn7jYg9I3VlZ5FnR9YpJtU3DbYD_ozsf_-R_Ih1-2e1-CQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:10 GMT
age: 58529
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02fde25be5ded120af759d19d8304f73
8d2a4d9ab5947113ce0737d4d4bed3e30a971026
7cdf26668cca22f28eee047d3fcf30cea8d97b1d8804fe2132728f26cd11558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8629
x-amzn-requestid: cc20d28e-3937-4826-97ef-100fb5dd2645
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFn3oAMF61A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-6e764236604212fa26dab38a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GIAPTJF7sfpuubLSngEDMrowvBWW5c1xRlyVf7PQ3o6rGWdFITVioA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:15:10 GMT
etag: "8d2a4d9ab5947113ce0737d4d4bed3e30a971026"
content-type: image/jpeg
age: 56549
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
neutrinocms.com/index_files/ca336a54.css
45.33.28.35200 OK 79 kB URL HTTP/2 neutrinocms.com/index_files/ca336a54.css
IP 45.33.28.35:0
Hash 83e9e739deda881a7f42915b51be31f9
adbe575c522db8ba7d623602c43947ef28153371
94699877bf3ec5ebed3e376f5a259a36177706865fba6db283b26785aa592166
Analyzer Verdict Alert openphish Bank of America
GET /index_files/ca336a54.css HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 18:53:51 GMT
vary: Accept-Encoding
etag: W/"63dc06bf-94cc9"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/1149f1b6.js
45.33.28.35200 OK 128 kB URL HTTP/2 neutrinocms.com/index_files/1149f1b6.js
IP 45.33.28.35:0
Size 128 kB (128188 bytes)
Hash b042f347f3cc1adf5e70da2b8f04b289
5671ddee837cae81c46ebfc36546c0d43c8392eb
5b6279d1a2ca53165bf7ec3f0e1110506ce84d6aa36dd2f57f601c2465bca524
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/1149f1b6.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:51 GMT
vary: Accept-Encoding
etag: W/"63dc06bf-f2535"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11608, version 1.197\012- data
Hash 46b5329e8e4e5925129ab2c36b336d0f
63cd5fbcbe5331e7d8059a4caee8d2510f834d68
79f02d139cfd07f2a19e0a8831553b3de4627fcab371e18eb776af035465949b
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097157
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:39 GMT
etag: "2d58-5df73b65ca1ee"
expires: Thu, 08 Feb 2024 13:57:39 GMT
last-modified: Fri, 20 May 2022 16:09:17 GMT
server: ECS (ska/F705)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsjvP0kK7AjLEQg5dYgQAAAA0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11608
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-regular/roboto-regular.woff2
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-regular/roboto-regular.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-regular/roboto-regular.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097157
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:39 GMT
etag: "3d78-5df73b65f8437"
expires: Thu, 08 Feb 2024 13:57:39 GMT
last-modified: Fri, 20 May 2022 16:09:17 GMT
server: ECS (ska/F718)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsjnnrsfRSsegNDyNc9QAAATc
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15736
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.woff2
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 15872, version 1.0\012- data
Hash 020c97dc8e0463259c2f9df929bb0c69
8f956a31154047d1b6527b63db2ecf0f3a463f24
24369e1b2461af9dcefecaf9cc93d64cf22a4c5bac32506100b9e21014507bcf
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097156
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:39 GMT
etag: "3e00-5df73b65e4fa2"
expires: Thu, 08 Feb 2024 13:57:39 GMT
last-modified: Fri, 20 May 2022 16:09:17 GMT
server: ECS (ska/F715)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9Lsj1rMJk0N0a32DBmZXAAAADo
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15872
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.woff
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 15648, version 1.0\012- data
Hash db12fee09df2fe82185361bef82283f7
9634aa7fe9c8a30bb8e6cfd8274841376e21d5bb
6b0a734c5d1f0eb6a65da6e72b8cb2b57f4df5f3fb24cd2fd39bd34aa8284478
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1040772
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:39 GMT
etag: "3d20-5df73b571ee7e"
expires: Thu, 08 Feb 2024 13:57:39 GMT
last-modified: Fri, 20 May 2022 16:09:01 GMT
server: ECS (ska/F711)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9PIz4eSJSrFmNBeoAShGAAAATw
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15648
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-regular/roboto-regular.woff
192.229.233.230200 OK 20 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-regular/roboto-regular.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 20268, version 1.1\012- data
Hash 60fa3c0614b8fb2f394fa29944c21540
42c8ae79841c592a26633f10ee9a26c75bcf9273
c1dc87f99c7ff228806117d58f085c6c573057fa237228081802b7d8d3cf7684
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-regular/roboto-regular.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1040772
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:39 GMT
etag: "4f2c-5df73b574b569"
expires: Thu, 08 Feb 2024 13:57:39 GMT
last-modified: Fri, 20 May 2022 16:09:02 GMT
server: ECS (ska/F716)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9PIzwP0AQUdfhau01W3RAAAAOU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 20268
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.woff
192.229.233.230200 OK 20 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 20464, version 1.1\012- data
Hash 87284894879f5b1c229cb49c8ff6decc
fb1bd3baf122d5d350eb387f0536c20da71f09df
ba98f991d002c6bfaaf7b874652ffdcde9261a86925db87df3ed2861ea080adf
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 987169
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:39 GMT
etag: "4ff0-5df73b65e3fff"
expires: Thu, 08 Feb 2024 13:57:39 GMT
last-modified: Fri, 20 May 2022 16:09:17 GMT
server: ECS (ska/F6FD)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9SaMrJyOjhZDz_9RmeXIQAAAac
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 20464
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png
192.229.233.230200 OK 8.4 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png
IP 192.229.233.230:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 67af3bbd46f9947739538d49395d573d
03a34b0aa432274f88862b27ab109f8e26311e72
b47bfe9d7333188f5b2f8690785ccd966d882c2364a5e4e5ae293e02554ad8d8
GET /homepage/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1096896
cache-control: max-age=26920000, public
content-type: image/png
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "20a2-58422ddd48440"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 15 Mar 2019 14:29:29 GMT
server: ECS (ska/F717)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LtlAP0AQUdfhau01U8lQAAAP0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 8354
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png
192.229.233.230200 OK 15 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png
IP 192.229.233.230:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash cb64c30b1249dbac9691a3a2cc418631
2c36d5247a84049dea63ced5ad35666d6589413e
9a092ddd265dc1651c83cdbd0e7d5d523dc51c3cacfc9b4ec98a6ddb58ee364e
GET /homepage/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1096398
cache-control: max-age=26920000, public
content-type: image/png
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "39d3-58422ddd48440"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 15 Mar 2019 14:29:29 GMT
server: ECS (ska/F70F)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LvhjUqDy2iksel7GYGRwAAAIk
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 14803
X-Firefox-Spdy: h2
neutrinocms.com/index_files/saved_resource.html
45.33.28.35200 OK 149 B URL HTTP/2 neutrinocms.com/index_files/saved_resource.html
IP 45.33.28.35:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3c2ccda97c47ede0b1c91b11efd575ea
0a348c4b61c961aba7618f909beb87f740a81983
97f9b10039b05e1af4a3c9b778fc72ba44cf68a376e4ec1d55f2558f16cf3e50
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/saved_resource.html HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Cookie: bactm_lts=%7B%22adobeMID%22%3A%7B%22errors%22%3A%5B%7B%22code%22%3A198%2C%22msg%22%3A%22Requests%20from%20this%20country%20are%20blocked%20by%20partner%22%7D%5D%7D%7D; utag_main=v_id:0186315228460000973c8814208400050002000900918$_sn:1$_se:1$_ss:1$_st:1675866513287$ses_id:1675864713287%3Bexp-session$_pn:1%3Bexp-session; _cls_v=dd74d28a-afbb-49ba-b42e-1e3612e71914; _cls_s=19e79ff7-5859-4bde-ae1b-7153733a9e13:0; cdContextId=1; bmuid=1675864713755-267EE535-6780-438A-A1D6-E34ED1F90910; LSESSIONID=eyJpIjoic2dVM0RxKzl2VWNjQU5UakdlS3p2Zz09IiwiZSI6InhpWGRHUVlQN0N5OW5VMzZJeXZqTFdBdHdWZm1XbUpUZmN0ODBqZ2tCZURnYlIwY0NqYVpEYTNRSzdhQUhiUFljM2d2WTBaQmhhdnNVaTkxVDJUNkVWYSsxQnd1N2VNaDFnQ3lmTEcxYnc4Q0VubVhpa0RZdjg4Z3hZcVloZ2tLUWMyMW13MGVaY3ZJUDFDS3NtQTEyQT09In0%3D.28745cb1577193d2.MzM4NzU4NDMwNDRmNTYxMTNkZTZmM2RhNjcwYTc0MWM3MDM0YTRkZTM2YTkxNmIyMzA5MjJlM2VlYjJmNjZmMg%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:40 GMT
content-type: text/html
content-length: 149
last-modified: Thu, 02 Feb 2023 18:53:56 GMT
etag: "63dc06c4-95"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-colored-flagscape-v2-CSX4e4e3134.svg
192.229.233.230200 OK 960 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-colored-flagscape-v2-CSX4e4e3134.svg
IP 192.229.233.230:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash bc550d5944d9c114f8a003e84c64ba8b
55c75d483241176ec8d6094d182cc537a9a849ff
b5a575db3404f7b19cd65f43f2e0208dce21077f415a8c0bc9e95a8fb9033f70
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-colored-flagscape-v2-CSX4e4e3134.svg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097202
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "83a-58422ddd48440"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 15 Mar 2019 14:29:29 GMT
server: ECS (ska/F71D)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsYyjlo7PPfXkjUSQeJQAAAUs
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 960
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_blue-CSXbd9e506c.svg
192.229.233.230200 OK 185 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_blue-CSXbd9e506c.svg
IP 192.229.233.230:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash 00cbd7ef8440cd32db7ff3325a20ad6c
825f2462276523ac45c7dd16566179866d27019d
aab71ea20022379418697a6e00a2349f8fe590bcaf12f7987112b0cb82fce28f
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_blue-CSXbd9e506c.svg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097202
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "da-5589fa4d4b100"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Thu, 07 Sep 2017 20:52:52 GMT
server: ECS (ska/F715)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsYwX4ovu3qZGrcpqP_wAAANU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 185
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_dark_blue-CSX476e4cfc.svg
192.229.233.230200 OK 184 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_dark_blue-CSX476e4cfc.svg
IP 192.229.233.230:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash c07724999f2a04c655ae43c93f136fbf
da3b1c260beaec5fdbf94207706d2eed5bf457ca
6ef2a9a69583c4ceabe33f9b3ba3b62ff1e1e5cccaa4f81d3ba286c2b82be770
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_dark_blue-CSX476e4cfc.svg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097131
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "da-587c923c76680"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Wed, 01 May 2019 01:07:22 GMT
server: ECS (ska/F719)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsqXhokSw-xOuUfoxCRgAAAAA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 184
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_01-CSX77d5029f.jpg
192.229.233.230200 OK 7.7 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_01-CSX77d5029f.jpg
IP 192.229.233.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 319x363, components 3\012- data
Hash a4795bea4a65bb0b86b96211837a2ca7
40e05d1f6f83c4ea74781f397c992ca4411e8a3b
ba58f8be1cbf434b141668b0d089676975869b4e23b56d1177410aba6ce21d17
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_01-CSX77d5029f.jpg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097132
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "1e14-5ec9a8759cd16"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 04 Nov 2022 00:55:23 GMT
server: ECS (ska/F719)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsqSjlo7PPfXkjUSQ2CQAAAV8
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 7700
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_02-CSX1c1e429c.jpg
192.229.233.230200 OK 17 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_02-CSX1c1e429c.jpg
IP 192.229.233.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 319x363, components 3\012- data
Hash b095a4eca9fd81655751befc9a52fed1
f2f659ef538f949d185ab83ae7d11875dc3a84c7
5f61705500146e4c39055edcfba968a485986066ee99336ddb0565ff61e84540
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_02-CSX1c1e429c.jpg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097131
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "441b-5ec9a84fe7193"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 04 Nov 2022 00:54:43 GMT
server: ECS (ska/F712)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsqStg5mzFL3HQ542tEgAAAaE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 17435
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_03-CSX1bf1c581.jpg
192.229.233.230200 OK 10 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_03-CSX1bf1c581.jpg
IP 192.229.233.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 319x363, components 3\012- data
Hash b8621169228d24d2f2f1435aeb603d57
b62c9ecc41adb370cbef7b82f41bcee0dd05bbcb
3a10582875d3bce969c6bc8fa10611bd93f9029a0053f82b4dd20ef17a6b3e1c
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_03-CSX1bf1c581.jpg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097131
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "28f4-5ec9a8759ffdd"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 04 Nov 2022 00:55:23 GMT
server: ECS (ska/F718)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsqQX4ovu3qZGrcpqoIgAAAOc
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 10484
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_04-CSXbb164a09.jpg
192.229.233.230200 OK 18 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_04-CSXbb164a09.jpg
IP 192.229.233.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 319x363, components 3\012- data
Hash aeea4573b1e75fdf021f89e91a779466
b469adce3802894ca569329e7eb405d3d7ae4762
da62b37a99c3ecefd8323cc61706f29396ed36379c22fb333773273ad0b06e32
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-education-ent_edu_bac_4953168_319_en_gc_04-CSXbb164a09.jpg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097131
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "4666-5ec9a875a0f80"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 04 Nov 2022 00:55:23 GMT
server: ECS (ska/F715)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsqZIYF8exUWDG2C4HgAAAAAU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 18022
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_phone_3034668_1440-CSXa5b7c889.png
192.229.233.230200 OK 49 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_phone_3034668_1440-CSXa5b7c889.png
IP 192.229.233.230:0
File type PNG image data, 278 x 313, 8-bit/color RGBA, non-interlaced\012- data
Hash af6b0bf1de1b342b6ee9b71c25a90b16
562d921374dff21b308e7d4d467802316dc3d61f
86247daf26afd87e0f85128c4255f7f7409171467150e4268dc213a56e2b3e51
GET /homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_phone_3034668_1440-CSXa5b7c889.png HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097201
cache-control: max-age=26920000, public
content-type: image/png
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "bddc-5e6984edd636a"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 19 Aug 2022 13:45:16 GMT
server: ECS (ska/F718)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsY3hokSw-xOuUfowq5wAAADY
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 48604
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-logos-icon_browse_specialist_white-CSXcc6539c6.svg
192.229.233.230200 OK 614 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-logos-icon_browse_specialist_white-CSXcc6539c6.svg
IP 192.229.233.230:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1148), with no line terminators
Hash 6ee8d81a425644057e222dd8aef83253
aa421a07b4669a1445c6d3d1f50662b290b03cd4
93d2ce0b9585a4297963ee01eafccfb1e7617bf6ff65094925fdf1ab7247eb32
GET /homepage/spa-assets/images/assets-images-global-logos-icon_browse_specialist_white-CSXcc6539c6.svg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097202
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "47c-5ed11b6e01ddf"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Wed, 09 Nov 2022 23:07:01 GMT
server: ECS (ska/F71C)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsY3zL9u-Ih8JmPIhXowAAARE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 614
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_bb_3034668_1440-CSXe3b51fda.jpg
192.229.233.230200 OK 9.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_bb_3034668_1440-CSXe3b51fda.jpg
IP 192.229.233.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 1440x320, components 3\012- data
Hash 9a3f32b23546d232b1724d4a71409ca4
0bd9dd5dfdfa4c9aad7252215b7d8f6519377019
36d949908df2e6067788cfc71a6f8d26baf2ef9a93e6a91a8377cb26d2ea8f6b
GET /homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_bb_3034668_1440-CSXe3b51fda.jpg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097202
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "2692-5a3eaf4c85e00"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Thu, 23 Apr 2020 01:13:28 GMT
server: ECS (ska/F717)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsYihE-jPbJaiB-s-DzQAAAM8
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 9874
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-logos-icon-ehl-white-CSX189e8f4c.svg
192.229.233.230200 OK 269 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-global-logos-icon-ehl-white-CSX189e8f4c.svg
IP 192.229.233.230:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (379)
Hash 7c059bbacabcb05bbbf7cccd875daec0
1fde03a8987b86f30051dae52096422f2b75daab
a713ba170f85c2a2acecf8e96a612f68136245f99650c79d72a02268a128f121
GET /homepage/spa-assets/images/assets-images-global-logos-icon-ehl-white-CSX189e8f4c.svg HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097202
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "17c-5aca3c3f9a068"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Wed, 12 Aug 2020 01:04:11 GMT
server: ECS (ska/F708)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsYgP0AQUdfhau01XJhgAAAOQ
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 269
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11628, version 1.197\012- data
Hash 01ed6e7ce19d38ecdeb6aefaa5b09de9
74e17e5c8d95b15f82b51066cd65790c6e991967
e7a245881b6946f6a5ce4bb8f6d47c7369274451a6b8cebf0d148834a1c87d5c
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097130
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "2d6c-5df73b2a299bd"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 20 May 2022 16:08:14 GMT
server: ECS (ska/F708)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsqsqIn6Dhgt-dBbXAggAAALE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11628
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11984, version 1.197\012- data
Hash 50d39f33c7179280df5acb6a5bb2716b
eb19d2940c727bb4e7f66e1e5c89ecff30725875
a431986817e5d309cdd61c623a5259d6ea5840375876ffb41f5a2cab65ddd2e3
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097158
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "2ed0-5df73b2a32657"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 20 May 2022 16:08:14 GMT
server: ECS (ska/F70C)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsjsqIn6Dhgt-dBbW-EAAAAMU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11984
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.197\012- data
Hash 79e7bc718644146e98b5d55f19c8ed4a
9d0c5c674b242443a055a654e1ef0fa0e31642e2
d48faa13adcd567a29299db487912dd91fd45f777cadf153520f52023b58cee7
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097158
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "2e18-5df73b6597956"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 20 May 2022 16:09:17 GMT
server: ECS (ska/F70D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9Lsjjwv0J0WKKSaLsCeFAAAAVA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11800
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 926c8314be24751a09ae5575f5a8f231
8e4ebfbc15e455971615768969a508e43f8948a8
10f218f145af3e86d5c543d9ebc38772cf4c7e94175ba2254c5911fb5f893dc5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10F218F145AF3E86D5C543D9EBC38772CF4C7E94175BA2254C5911FB5F893DC5"
Last-Modified: Tue, 07 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4669
Expires: Wed, 08 Feb 2023 15:15:29 GMT
Date: Wed, 08 Feb 2023 13:57:40 GMT
Connection: keep-alive
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 1d946121f832012245ac3e6d5db32a20
618ad569442fdfb88dd3e7889995167ae57e305a
566ce6dcb452ef59f616479b89df958f60c208e8d8fcb9502fdd7b7b9d13a6b0
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-regular/cnx-regular.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 793658
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "70ac-5df73b571dee1"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 20 May 2022 16:09:01 GMT
server: ECS (ska/F71B)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9eOGoEVyT-4S-9XrvToPwAAANs
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15479
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.js
45.33.28.35200 OK 21 kB URL HTTP/2 neutrinocms.com/index_files/utag.js
IP 45.33.28.35:0
File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-Regularhtt\012- data
Hash e6ff9aeb4e037e5e3b7511c3071e25da
a3f8b2e9e945f85e2bad4d4d4fc9d41d3fa8ceb1
316a9cf0a4317e560e29cd0c8912d9a26b20ab567a852e94eea543951f3e5b42
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:51 GMT
vary: Accept-Encoding
etag: W/"63dc06bf-4fe8e"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.ttf
192.229.233.230200 OK 21 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.ttf
IP 192.229.233.230:0
File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med\012- data
Hash fa3cb8027d1224c4bcd868e8a79c7de5
61b30d718b51dc094894dcc89c528824aeb04c1e
6cb632653195b777250e9f69ab9297dc4e32eb52e92c884cf37cf44480d8b063
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/roboto-medium/roboto-medium.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 40534
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:40 GMT
etag: "8e44-5df73b2a52224"
expires: Thu, 08 Feb 2024 13:57:40 GMT
last-modified: Fri, 20 May 2022 16:08:14 GMT
server: ECS (ska/F71B)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y-ML_gQHxigtxDd1iOjOLwAAAAk
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 20811
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.woff
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 15628, version 1.0\012- data
Hash 152697dadb46c460f40f62483efec85e
31242132505e2e3ddb1332cba2d4b6e43ae502b9
25a482fbd4ca15858546872c5fe572a99c58f447ddb0296b557dc37c7e33ddbe
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1040774
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "3d0c-5df73b65ad8e5"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 20 May 2022 16:09:17 GMT
server: ECS (ska/F70C)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9PIz0nBgbpyrsy33sKn6AAAALs
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15628
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.woff
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 15992, version 1.0\012- data
Hash 128668a075c4f264d2e981b8b209b3d9
66e16397d123a07d1f9b3cc5fc816b0f86d0e4f5
66012a69bf24d036818928db1858817600cd028616d8adddc7f3de5936453fec
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1079648
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "3e78-5df73b5714a71"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 20 May 2022 16:09:01 GMT
server: ECS (ska/F712)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9Mw9UJl36ehaCYjtHuRcwAAAL4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15992
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.woff
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 15920, version 1.0\012- data
Hash e5c808f05ff56b6ad54c51b2f3dc308a
b0e61bf5f1eb0aa2ee19be3645edabd0d68cdc9f
d91d3ce91a4e63475ad24023d5697eb570499ff65bd342768b4b3077f7e517c1
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1040774
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "3e30-5df73b56fa48e"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 20 May 2022 16:09:01 GMT
server: ECS (ska/F71A)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9PIz9Cdc7u3MZ2M-XwwHAAAAE4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15920
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11608, version 1.197\012- data
Hash 46b5329e8e4e5925129ab2c36b336d0f
63cd5fbcbe5331e7d8059a4caee8d2510f834d68
79f02d139cfd07f2a19e0a8831553b3de4627fcab371e18eb776af035465949b
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097203
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "2d58-5d84f23e56aea"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:34:59 GMT
server: ECS (ska/F6FE)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsY3hokSw-xOuUfowq2gAAADM
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11608
X-Firefox-Spdy: h2
content-cdn.com/723/dWdnY2Y6Ly9hcmhnZXZhYnB6Zi5wYnovYmdjLnVnenk=.gif
3.91.119.191200 OK 43 B URL HTTP/2 content-cdn.com/723/dWdnY2Y6Ly9hcmhnZXZhYnB6Zi5wYnovYmdjLnVnenk=.gif
IP 3.91.119.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
GET /723/dWdnY2Y6Ly9hcmhnZXZhYnB6Zi5wYnovYmdjLnVnenk=.gif HTTP/1.1
Host: content-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: envoy
date: Wed, 08 Feb 2023 13:57:40 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-envoy-upstream-service-time: 1
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash b2cd45a6be0b14a601082d1aa6da8add
beac8dec4f96cdccffb078389c672d9c31f8c727
64c2a1715cde0f94edd36239a8b5817741003480ada25d5bbc792366a6baca85
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-light/cnx-light.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 793659
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "7144-5df73b570b219"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 20 May 2022 16:09:01 GMT
server: ECS (ska/F705)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9eOGjy9tkOZiT_NoD_tlgAAALM
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15470
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 17 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 150378dcf7fda416b461bdf93d27720a
e5024f2fc8b091c7eb8d2eedae55bdc761e703ab
7181c5de10a1a490600afe7bc3ea0a64dce35f34a6568681692c183e7b8c6654
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-medium/cnx-medium.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 793659
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "7110-5df73b5713acf"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 20 May 2022 16:09:01 GMT
server: ECS (ska/F70C)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9eOGhHR8N4JcumA0qE6OgAAATI
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15833
X-Firefox-Spdy: h2
www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 0dc02956bdbb283ad3e4458415cdcf68
b9764655cdd73c70b2059201e1cfcfa2e3096541
bd97fc4e8fd50f25e67e928b0a86a91e4d5db3c393b746d536fd0ea7687b9e5f
GET /spa/widgets/global-search-public-widget/1.0.0/spa-assets/components/utilities/global/sparta-style-utility/4.6.0/font/cnx-bold/cnx-bold.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 793659
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "72c0-5df73b56f910f"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 20 May 2022 16:09:01 GMT
server: ECS (ska/F712)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9eOGtiySvkZKD-KVSNBxgAAAAk
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15737
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.woff
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 15648, version 1.0\012- data
Hash db12fee09df2fe82185361bef82283f7
9634aa7fe9c8a30bb8e6cfd8274841376e21d5bb
6b0a734c5d1f0eb6a65da6e72b8cb2b57f4df5f3fb24cd2fd39bd34aa8284478
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1024776
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "3d20-5d84f144966f2"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F70E)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9QHTeb3h-lxK0TcgOyiDQAAASs
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15648
X-Firefox-Spdy: h2
neutrinocms.com/index_files/js/GlancePresenceVisitor_5.7.9M.js
45.33.28.35404 Not Found 146 B URL HTTP/2 neutrinocms.com/index_files/js/GlancePresenceVisitor_5.7.9M.js
IP 45.33.28.35:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/js/GlancePresenceVisitor_5.7.9M.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Cookie: bactm_lts=%7B%22adobeMID%22%3A%7B%22errors%22%3A%5B%7B%22code%22%3A198%2C%22msg%22%3A%22Requests%20from%20this%20country%20are%20blocked%20by%20partner%22%7D%5D%7D%7D; utag_main=v_id:0186315228460000973c8814208400050002000900918$_sn:1$_se:1$_ss:1$_st:1675866513287$ses_id:1675864713287%3Bexp-session$_pn:1%3Bexp-session; _cls_v=dd74d28a-afbb-49ba-b42e-1e3612e71914; _cls_s=19e79ff7-5859-4bde-ae1b-7153733a9e13:0; cdContextId=1; bmuid=1675864713755-267EE535-6780-438A-A1D6-E34ED1F90910; LSESSIONID=eyJpIjoic2dVM0RxKzl2VWNjQU5UakdlS3p2Zz09IiwiZSI6InhpWGRHUVlQN0N5OW5VMzZJeXZqTFdBdHdWZm1XbUpUZmN0ODBqZ2tCZURnYlIwY0NqYVpEYTNRSzdhQUhiUFljM2d2WTBaQmhhdnNVaTkxVDJUNkVWYSsxQnd1N2VNaDFnQ3lmTEcxYnc4Q0VubVhpa0RZdjg4Z3hZcVloZ2tLUWMyMW13MGVaY3ZJUDFDS3NtQTEyQT09In0%3D.28745cb1577193d2.MzM4NzU4NDMwNDRmNTYxMTNkZTZmM2RhNjcwYTc0MWM3MDM0YTRkZTM2YTkxNmIyMzA5MjJlM2VlYjJmNjZmMg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 08 Feb 2023 13:57:40 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 1d946121f832012245ac3e6d5db32a20
618ad569442fdfb88dd3e7889995167ae57e305a
566ce6dcb452ef59f616479b89df958f60c208e8d8fcb9502fdd7b7b9d13a6b0
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-regular/cnx-regular.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 934114
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "70ac-5d84f1449536e"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F718)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9Vpc8OQmGkwDCT1ZgMmIQAAAfA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15479
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11628, version 1.197\012- data
Hash 01ed6e7ce19d38ecdeb6aefaa5b09de9
74e17e5c8d95b15f82b51066cd65790c6e991967
e7a245881b6946f6a5ce4bb8f6d47c7369274451a6b8cebf0d148834a1c87d5c
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097203
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "2d6c-5d84f14483e1b"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F708)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsYgK7wSD6d8Z7K83QPQAAAKQ
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11628
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11984, version 1.197\012- data
Hash 50d39f33c7179280df5acb6a5bb2716b
eb19d2940c727bb4e7f66e1e5c89ecff30725875
a431986817e5d309cdd61c623a5259d6ea5840375876ffb41f5a2cab65ddd2e3
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097203
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "2ed0-5d84f1448d288"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F711)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsYnzL9u-Ih8JmPIhXoQAAATI
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11984
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-bold/cnx-bold.woff2
192.229.233.230200 OK 12 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-bold/cnx-bold.woff2
IP 192.229.233.230:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.197\012- data
Hash 79e7bc718644146e98b5d55f19c8ed4a
9d0c5c674b242443a055a654e1ef0fa0e31642e2
d48faa13adcd567a29299db487912dd91fd45f777cadf153520f52023b58cee7
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-bold/cnx-bold.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1097203
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "2e18-5d84f14471919"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F716)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9LsYoBI6NSsgsFOI2lr8gAAAdE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11800
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.woff
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 15628, version 1.0\012- data
Hash 152697dadb46c460f40f62483efec85e
31242132505e2e3ddb1332cba2d4b6e43ae502b9
25a482fbd4ca15858546872c5fe572a99c58f447ddb0296b557dc37c7e33ddbe
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1024776
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "3d0c-5d84f2fc3b25d"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:38:18 GMT
server: ECS (ska/F70D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9QHTTnYiY6k4sgsXgutKwAAAV0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15628
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.woff
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.woff
IP 192.229.233.230:0
File type Web Open Font Format, TrueType, length 15992, version 1.0\012- data
Hash 128668a075c4f264d2e981b8b209b3d9
66e16397d123a07d1f9b3cc5fc816b0f86d0e4f5
66012a69bf24d036818928db1858817600cd028616d8adddc7f3de5936453fec
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1028003
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "3e78-5d84f1448c2df"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F6FD)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9P6sjJHs3XUCjUSQbZgHgAAAFM
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15992
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-text-inputs.js
45.33.28.35200 OK 20 kB URL HTTP/2 neutrinocms.com/index_files/helpers-text-inputs.js
IP 45.33.28.35:0
Hash b72314f9fa592a4cac03110b3a55117b
ba4ac0fa88feef4000f01da2f9b06499f10ce762
e6b14c5a7fda6b6d7a2f586c6432d0099db393dc4aaa07b0b57859c982bb2c0b
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-text-inputs.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-3088"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash b2cd45a6be0b14a601082d1aa6da8add
beac8dec4f96cdccffb078389c672d9c31f8c727
64c2a1715cde0f94edd36239a8b5817741003480ada25d5bbc792366a6baca85
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-light/cnx-light.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 934114
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "7144-5d84f14481ed0"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F71C)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9Vpcwh2j6_0o6y4YyP3swAAAGw
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15470
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 2e0755575a0b68f6a6d3b169b56a479f
2cba7df7605981c304640de99451874d0b868606
6254289b3b004279acf5d00177f571d7663540ccbe5a45dd58fb582f6d6e622a
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "6254289B3B004279ACF5D00177F571D7663540CCBE5A45DD58FB582F6D6E622A"
Last-Modified: Wed, 08 Feb 2023 04:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3459
Expires: Wed, 08 Feb 2023 14:55:20 GMT
Date: Wed, 08 Feb 2023 13:57:41 GMT
Connection: keep-alive
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 17 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 150378dcf7fda416b461bdf93d27720a
e5024f2fc8b091c7eb8d2eedae55bdc761e703ab
7181c5de10a1a490600afe7bc3ea0a64dce35f34a6568681692c183e7b8c6654
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-medium/cnx-medium.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 934114
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "7110-5d84f1448af60"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F71C)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9Vpc_EYcwhVLuKUfKyHXAAAAVA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15833
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-bold/cnx-bold.ttf
192.229.233.230200 OK 16 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-bold/cnx-bold.ttf
IP 192.229.233.230:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 0dc02956bdbb283ad3e4458415cdcf68
b9764655cdd73c70b2059201e1cfcfa2e3096541
bd97fc4e8fd50f25e67e928b0a86a91e4d5db3c393b746d536fd0ea7687b9e5f
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.2.4/font/cnx-bold/cnx-bold.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 934114
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "72c0-5d84f1446f9d8"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:30:37 GMT
server: ECS (ska/F704)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9VpczJHs3XUCjUSQbaaWAAAAGg
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15737
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/bundles/49dbcc39.js
192.229.233.230200 OK 136 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/bundles/49dbcc39.js
IP 192.229.233.230:0
File type ASCII text, with very long lines (65129)
Size 136 kB (135988 bytes)
Hash d49a627329bc30b6269aa609fc7923e7
b02b04212d3e5f9361e0c33c6033c96f3a7e42f1
0b50cd55761390e2ccaf540a50d939459afb9027c26b48a7aea1ea5ba3034f1f
GET /homepage/spa-assets/bundles/49dbcc39.js HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097203
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "8800b-5d84f236ba2f2"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 18 Feb 2022 18:34:51 GMT
server: ECS (ska/F716)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsYgX4ovu3qZGrcpqPvAAAAOU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 135988
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/bundles/1149f1b6.js
192.229.233.230200 OK 95 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/bundles/1149f1b6.js
IP 192.229.233.230:0
File type C source, ASCII text, with very long lines (17816)
Hash 9e53c3ef4cf46c33452cd91ad9864a36
e20b134bcdbe05e3a93f4e6db69e5d5b831fe85d
08daffbb1f6a1999b07ccb8fe8a34f48b975f7e608c3960791636f07ad36bb35
GET /homepage/spa-assets/bundles/1149f1b6.js HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097203
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "f2535-5f179e5af74c8"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Thu, 05 Jan 2023 01:05:30 GMT
server: ECS (ska/F6FD)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsYijlo7PPfXkjUSQd_AAAAXU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 94892
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
52.247.36.244200 OK 2.0 kB URL HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP 52.247.36.244:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2036), with no line terminators
Hash 553c02efdc9a8607ba629ed55a4f479b
030ce4ecb64381f6d0213fc37c0d9e7612646c2b
5057333495147b810b7483e8f88b06f5f267139fdb8c7205d45a14e54b3f4620
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 2040
date: Wed, 08 Feb 2023 13:57:40 GMT
server: uvicorn
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 683c9a0e-0319-4c7f-abd7-d8b18eba7764
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-browser-support-utility/4.5.3/data/en/browser.json
192.229.233.230200 OK 9.4 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-browser-support-utility/4.5.3/data/en/browser.json
IP 192.229.233.230:0
File type JSON data\012- , ASCII text, with very long lines (12225)
Hash 6e476907a8a9205aa94b84965200a428
6e077ecb60a41d679f25f6fac514c9efa6fcc680
326538674512197ab5d7845c76129039be0e2a917162f7fe12a0afbf2f4fc3c5
GET /homepage/spa-assets/components/utilities/global/sparta-browser-support-utility/4.5.3/data/en/browser.json HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097205
cache-control: max-age=604800, public
content-type: application/json
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "37be-5ed11b6cc72b3"
expires: Wed, 15 Feb 2023 13:57:41 GMT
last-modified: Wed, 09 Nov 2022 23:07:00 GMT
server: ECS (ska/F6FD)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsYIBI6NSsgsFOI2lreQAAAac
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 9372
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/vendor/fetch/2.0.3/js/fetch.js
192.229.233.230200 OK 2.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/vendor/fetch/2.0.3/js/fetch.js
IP 192.229.233.230:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (9743)
Hash ab15197c50cfdd0dec69cfc10c0d9f26
bad8866a12d6d1ecd1fe7218445091ce08be9417
da706961428c43067bfde1d4f20bbdf9d3835db860cf2e8b7b8c7d41dd7540bd
GET /homepage/spa-assets/components/utilities/vendor/fetch/2.0.3/js/fetch.js HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097201
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "2633-579b04fb4b080"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Fri, 02 Nov 2018 15:37:22 GMT
server: ECS (ska/F705)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsZDDyJ_ScmI7GyY4jGgAAAaI
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 2938
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/vendor/require-css/0.1.8/js/require-css.js
192.229.233.230200 OK 1.1 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/vendor/require-css/0.1.8/js/require-css.js
IP 192.229.233.230:0
File type ASCII text, with very long lines (2656)
Hash 4d64345bbfed60dff7f6caafc9842cb8
db94946d5436f0419ec53f350a5c7cd37812ffaf
30c694d5f62d18c241de25fff1ed801df9ebc8d6e9847ed65fc600a0f19b540f
GET /homepage/spa-assets/components/utilities/vendor/require-css/0.1.8/js/require-css.js HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097201
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "a8a-5589fa4d4b100"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Thu, 07 Sep 2017 20:52:52 GMT
server: ECS (ska/F70D)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsZMqIn6Dhgt-dBbW7DgAAAPU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 1134
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 08c8948c2dabcfd3a1769c504d733016
c44a0d1ede61788c0f2fe7ec6861f37b60d5f9b6
acc434831fb3536c56e1d9354211e6824042c85cde882ffaa849b0e8493aa213
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "ACC434831FB3536C56E1D9354211E6824042C85CDE882FFAA849B0E8493AA213"
Last-Modified: Wed, 08 Feb 2023 12:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3565
Expires: Wed, 08 Feb 2023 14:57:06 GMT
Date: Wed, 08 Feb 2023 13:57:41 GMT
Connection: keep-alive
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-validation-framework/7.1.8/data/en/messages.json
192.229.233.230200 OK 1.1 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-validation-framework/7.1.8/data/en/messages.json
IP 192.229.233.230:0
File type JSON data\012- , ASCII text
Hash 9d8e9cf4b5fe9e8f730305497f87ae96
4ab149a19daf8d6d4fd8bc5b28eaf1c01c0f905a
7459006625a34098d4d2fa4af1ecba54445458ed8c7d6bcf8a12177d3534022f
GET /homepage/spa-assets/components/utilities/global/sparta-validation-framework/7.1.8/data/en/messages.json HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097200
cache-control: max-age=604800, public
content-type: application/json
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "10c5-5ed11b6d0a4e9"
expires: Wed, 15 Feb 2023 13:57:41 GMT
last-modified: Wed, 09 Nov 2022 23:07:00 GMT
server: ECS (ska/F71B)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsZcOQmGkwDCT1ZgO7ZwAAAfw
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 1144
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-input-utility/12.1.1/data/en/inputs.json
192.229.233.230200 OK 89 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-input-utility/12.1.1/data/en/inputs.json
IP 192.229.233.230:0
File type JSON data\012- , ASCII text
Hash cd868147bdf996b981ac4cb59d7a395b
6ad4ce91f5f3d90dd68a5173577a6ee53e240977
bc937035e3786847d99666fb4b15dbce84087df72c9441cc502f223e300f04eb
GET /homepage/spa-assets/components/utilities/global/sparta-input-utility/12.1.1/data/en/inputs.json HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097133
cache-control: max-age=604800, public
content-type: application/json
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "69-59029556fc340"
expires: Wed, 15 Feb 2023 13:57:41 GMT
last-modified: Thu, 15 Aug 2019 15:14:45 GMT
server: ECS (ska/F719)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsqFrMJk0N0a32DBmhvAAAAAI
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 89
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
52.213.97.196200 OK 104 B URL HTTP/1.1 dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
IP 52.213.97.196:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90a8ce4aa172e4b63430c93639257805
d30e7b2034df83180b28f024556a5534dce531c3
093ac6be731cba244fff837ea4fa57ab36e1fde5a5a53d9b36a467184eae87f5
GET /id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://neutrinocms.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-06ec06aa6.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 198
X-TID: 53Sg6iVPRNM=
Content-Length: 104
Connection: keep-alive
tags.tiqcdn.com/utag/bofa/main/prod/utag.js
23.38.200.249200 OK 70 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.js
IP 23.38.200.249:0
Hash 4b409c175305860177f251a7854facd7
08fc16fddb1684147085c669a981cfbb901075b4
ff71bfef20584a4fc594416949c02bee59cd89ff634d410e090e787f46259a59
GET /utag/bofa/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "06f278fcd83e39ddb6310d252454e496:1670628831.947296"
last-modified: Fri, 09 Dec 2022 23:33:51 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 08 Feb 2023 14:02:41 GMT
date: Wed, 08 Feb 2023 13:57:41 GMT
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 5d9ed37b5413d5e728034109a3ff6d7a
d2f353d6c929f378651c7b377b65399a279e9212
ca4716b1739d4bb87c6636c92145d6c518d3179c247fc4be483b8baac45e0174
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CA4716B1739D4BB87C6636C92145D6C518D3179C247FC4BE483B8BAAC45E0174"
Last-Modified: Wed, 08 Feb 2023 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Wed, 08 Feb 2023 14:57:40 GMT
Date: Wed, 08 Feb 2023 13:57:42 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 5d9ed37b5413d5e728034109a3ff6d7a
d2f353d6c929f378651c7b377b65399a279e9212
ca4716b1739d4bb87c6636c92145d6c518d3179c247fc4be483b8baac45e0174
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CA4716B1739D4BB87C6636C92145D6C518D3179C247FC4BE483B8BAAC45E0174"
Last-Modified: Wed, 08 Feb 2023 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3524
Expires: Wed, 08 Feb 2023 14:56:26 GMT
Date: Wed, 08 Feb 2023 13:57:42 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 029c00085fb6ea3d7c167ea3296c96bf
399150717ef740641e50636a8bce09cdeb353ea5
9799d52bc636de009b584a97b597cfd5daefa8e28d0d75dc3a77b3a866093ee2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=131839
Date: Wed, 08 Feb 2023 13:57:42 GMT
Etag: "63e2fcb8-1d7"
Expires: Fri, 10 Feb 2023 02:35:01 GMT
Last-Modified: Wed, 08 Feb 2023 01:36:56 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oI8R7-M6Ii6I3CEtl6j3hlyi43V7RsbuEQs_PSUs9dXZQg_iIPV6_Q==
Age: 3485
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
52.247.36.244200 OK 2.0 kB URL HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP 52.247.36.244:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2036), with no line terminators
Hash 4c2870ab010f2d1889a3d0296f68485c
0369dfb175d259f5543c6d3a4abae1fbb9a51985
a4255dd11ab9418ce96b9309ce2cd1389796d69f10ba286c028f1ff4b4de4c7c
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 2040
date: Wed, 08 Feb 2023 13:57:41 GMT
server: uvicorn
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 1314e6e3-aac1-4b39-a246-2e0dc8d2aa3d
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
testdata.coremetrics.com/eluminate?ci=90026697%3B60010394&st=1675864713647&vn1=4.2.7.1BOA&ec=UTF-8&ul=https%3A//neutrinocms.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2C1L85Y01_L1_bmh_Edge_BMH_L1_CMSDefault_edgeRetirementV122BmhNavCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTAHZ6L01_Hero_NH_G3CheckingUpdate122020_mastheadCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCB1HX9201_Engagement_Banner_Checking_EB_G5_checkingOpenAccountStickyBarEbCta&tid=9&cm_sp=Cons-CC-_-Card-Acquisition-_-CCA1SZ6R01_SuperHighlights_Card_21Cycle_G3_SHL_thirtySecondUpdateCta&tid=9&cm_sp=EBZ-EnterpriseBrand-_-NotAssigned-_-EBT1SX8601_SuperHighlights_JobSkills2021_lbiSHLCta&tid=9&cm_sp=MobileErica-_-Group3-_-M8T0QS5701_Highlights_NH_Erica_Chat_More_Help_Oct2022_HL_G3_ericaChatHl&tid=9&cm_sp=DEP-Checking-_-Checking-Regular-_-DCB1QT5601_Highlights_NH_BAU_CHK_Refresh_G3_chkQ221HlHl&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUTB01_Highlights_NH_2023GeneralHLG3_bamdGeneralHl&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta
54.224.36.233302 Found 0 B URL HTTP/1.1 testdata.coremetrics.com/eluminate?ci=90026697%3B60010394&st=1675864713647&vn1=4.2.7.1BOA&ec=UTF-8&ul=https%3A//neutrinocms.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2C1L85Y01_L1_bmh_Edge_BMH_L1_CMSDefault_edgeRetirementV122BmhNavCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTAHZ6L01_Hero_NH_G3CheckingUpdate122020_mastheadCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCB1HX9201_Engagement_Banner_Checking_EB_G5_checkingOpenAccountStickyBarEbCta&tid=9&cm_sp=Cons-CC-_-Card-Acquisition-_-CCA1SZ6R01_SuperHighlights_Card_21Cycle_G3_SHL_thirtySecondUpdateCta&tid=9&cm_sp=EBZ-EnterpriseBrand-_-NotAssigned-_-EBT1SX8601_SuperHighlights_JobSkills2021_lbiSHLCta&tid=9&cm_sp=MobileErica-_-Group3-_-M8T0QS5701_Highlights_NH_Erica_Chat_More_Help_Oct2022_HL_G3_ericaChatHl&tid=9&cm_sp=DEP-Checking-_-Checking-Regular-_-DCB1QT5601_Highlights_NH_BAU_CHK_Refresh_G3_chkQ221HlHl&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUTB01_Highlights_NH_2023GeneralHLG3_bamdGeneralHl&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta
IP 54.224.36.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eluminate?ci=90026697%3B60010394&st=1675864713647&vn1=4.2.7.1BOA&ec=UTF-8&ul=https%3A//neutrinocms.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2C1L85Y01_L1_bmh_Edge_BMH_L1_CMSDefault_edgeRetirementV122BmhNavCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTAHZ6L01_Hero_NH_G3CheckingUpdate122020_mastheadCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCB1HX9201_Engagement_Banner_Checking_EB_G5_checkingOpenAccountStickyBarEbCta&tid=9&cm_sp=Cons-CC-_-Card-Acquisition-_-CCA1SZ6R01_SuperHighlights_Card_21Cycle_G3_SHL_thirtySecondUpdateCta&tid=9&cm_sp=EBZ-EnterpriseBrand-_-NotAssigned-_-EBT1SX8601_SuperHighlights_JobSkills2021_lbiSHLCta&tid=9&cm_sp=MobileErica-_-Group3-_-M8T0QS5701_Highlights_NH_Erica_Chat_More_Help_Oct2022_HL_G3_ericaChatHl&tid=9&cm_sp=DEP-Checking-_-Checking-Regular-_-DCB1QT5601_Highlights_NH_BAU_CHK_Refresh_G3_chkQ221HlHl&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUTB01_Highlights_NH_2023GeneralHLG3_bamdGeneralHl&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta HTTP/1.1
Host: testdata.coremetrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 08 Feb 2023 13:57:42 GMT
Server: Apache
Vary: Host
Set-Cookie: CoreID6=83091675864662228330067; path=/; expires=Sun, 07 Feb 2038 13:57:42 GMT
TestSess3=83091675864662228330067;path=/
Location: /cm?ci=90026697%3B60010394&st=1675864713647&vn1=4.2.7.1BOA&ec=UTF-8&ul=https%3A//neutrinocms.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2C1L85Y01_L1_bmh_Edge_BMH_L1_CMSDefault_edgeRetirementV122BmhNavCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTAHZ6L01_Hero_NH_G3CheckingUpdate122020_mastheadCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCB1HX9201_Engagement_Banner_Checking_EB_G5_checkingOpenAccountStickyBarEbCta&tid=9&cm_sp=Cons-CC-_-Card-Acquisition-_-CCA1SZ6R01_SuperHighlights_Card_21Cycle_G3_SHL_thirtySecondUpdateCta&tid=9&cm_sp=EBZ-EnterpriseBrand-_-NotAssigned-_-EBT1SX8601_SuperHighlights_JobSkills2021_lbiSHLCta&tid=9&cm_sp=MobileErica-_-Group3-_-M8T0QS5701_Highlights_NH_Erica_Chat_More_Help_Oct2022_HL_G3_ericaChatHl&tid=9&cm_sp=DEP-Checking-_-Checking-Regular-_-DCB1QT5601_Highlights_NH_BAU_CHK_Refresh_G3_chkQ221HlHl&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUTB01_Highlights_NH_2023GeneralHLG3_bamdGeneralHl&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&cvdone=p
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Content-Length: 0
Connection: close
secure.bankofamerica.com/login/rest/sas/sparta/v2/iac?dfp=true&_=1675864715982
171.161.116.200403 Forbidden 0 B URL HTTP/1.0 secure.bankofamerica.com/login/rest/sas/sparta/v2/iac?dfp=true&_=1675864715982
IP 171.161.116.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /login/rest/sas/sparta/v2/iac?dfp=true&_=1675864715982 HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: cache-control,content-type
Referer: https://neutrinocms.com/
Origin: https://neutrinocms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.0 403 Forbidden
Server: BigIP
Connection: Keep-Alive
Content-Length: 0
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 03af319dd313f1002469528e65cdeb9f
51fb51a6615a42e1aa5651fab08d0bf5a94f639b
3fef77f28f7c2168ec12df5ac19cd1a607407bf114feb5499622644284dff0ac
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "3FEF77F28F7C2168EC12DF5AC19CD1A607407BF114FEB5499622644284DFF0AC"
Last-Modified: Wed, 08 Feb 2023 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3483
Expires: Wed, 08 Feb 2023 14:55:45 GMT
Date: Wed, 08 Feb 2023 13:57:42 GMT
Connection: keep-alive
www.bankofamerica.com/spa/widgets/cls_report?_cls_s=19e79ff7-5859-4bde-ae1b-7153733a9e13%3A0&_cls_v=dd74d28a-afbb-49ba-b42e-1e3612e71914&pv=2&f_cls_s=true
171.159.116.100200 OK 0 B URL HTTP/1.0 www.bankofamerica.com/spa/widgets/cls_report?_cls_s=19e79ff7-5859-4bde-ae1b-7153733a9e13%3A0&_cls_v=dd74d28a-afbb-49ba-b42e-1e3612e71914&pv=2&f_cls_s=true
IP 171.159.116.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /spa/widgets/cls_report?_cls_s=19e79ff7-5859-4bde-ae1b-7153733a9e13%3A0&_cls_v=dd74d28a-afbb-49ba-b42e-1e3612e71914&pv=2&f_cls_s=true HTTP/1.1
Host: www.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neutrinocms.com
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.0 200 OK
Server: BigIP
Connection: Keep-Alive
Content-Length: 0
testdata.coremetrics.com/cm?ci=90026697%3B60010394&st=1675864713647&vn1=4.2.7.1BOA&ec=UTF-8&ul=https%3A//neutrinocms.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2C1L85Y01_L1_bmh_Edge_BMH_L1_CMSDefault_edgeRetirementV122BmhNavCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTAHZ6L01_Hero_NH_G3CheckingUpdate122020_mastheadCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCB1HX9201_Engagement_Banner_Checking_EB_G5_checkingOpenAccountStickyBarEbCta&tid=9&cm_sp=Cons-CC-_-Card-Acquisition-_-CCA1SZ6R01_SuperHighlights_Card_21Cycle_G3_SHL_thirtySecondUpdateCta&tid=9&cm_sp=EBZ-EnterpriseBrand-_-NotAssigned-_-EBT1SX8601_SuperHighlights_JobSkills2021_lbiSHLCta&tid=9&cm_sp=MobileErica-_-Group3-_-M8T0QS5701_Highlights_NH_Erica_Chat_More_Help_Oct2022_HL_G3_ericaChatHl&tid=9&cm_sp=DEP-Checking-_-Checking-Regular-_-DCB1QT5601_Highlights_NH_BAU_CHK_Refresh_G3_chkQ221HlHl&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUTB01_Highlights_NH_2023GeneralHLG3_bamdGeneralHl&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&cvdone=p
54.224.36.233200 OK 43 B URL HTTP/1.1 testdata.coremetrics.com/cm?ci=90026697%3B60010394&st=1675864713647&vn1=4.2.7.1BOA&ec=UTF-8&ul=https%3A//neutrinocms.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2C1L85Y01_L1_bmh_Edge_BMH_L1_CMSDefault_edgeRetirementV122BmhNavCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTAHZ6L01_Hero_NH_G3CheckingUpdate122020_mastheadCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCB1HX9201_Engagement_Banner_Checking_EB_G5_checkingOpenAccountStickyBarEbCta&tid=9&cm_sp=Cons-CC-_-Card-Acquisition-_-CCA1SZ6R01_SuperHighlights_Card_21Cycle_G3_SHL_thirtySecondUpdateCta&tid=9&cm_sp=EBZ-EnterpriseBrand-_-NotAssigned-_-EBT1SX8601_SuperHighlights_JobSkills2021_lbiSHLCta&tid=9&cm_sp=MobileErica-_-Group3-_-M8T0QS5701_Highlights_NH_Erica_Chat_More_Help_Oct2022_HL_G3_ericaChatHl&tid=9&cm_sp=DEP-Checking-_-Checking-Regular-_-DCB1QT5601_Highlights_NH_BAU_CHK_Refresh_G3_chkQ221HlHl&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUTB01_Highlights_NH_2023GeneralHLG3_bamdGeneralHl&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&cvdone=p
IP 54.224.36.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /cm?ci=90026697%3B60010394&st=1675864713647&vn1=4.2.7.1BOA&ec=UTF-8&ul=https%3A//neutrinocms.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2C1L85Y01_L1_bmh_Edge_BMH_L1_CMSDefault_edgeRetirementV122BmhNavCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTAHZ6L01_Hero_NH_G3CheckingUpdate122020_mastheadCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCB1HX9201_Engagement_Banner_Checking_EB_G5_checkingOpenAccountStickyBarEbCta&tid=9&cm_sp=Cons-CC-_-Card-Acquisition-_-CCA1SZ6R01_SuperHighlights_Card_21Cycle_G3_SHL_thirtySecondUpdateCta&tid=9&cm_sp=EBZ-EnterpriseBrand-_-NotAssigned-_-EBT1SX8601_SuperHighlights_JobSkills2021_lbiSHLCta&tid=9&cm_sp=MobileErica-_-Group3-_-M8T0QS5701_Highlights_NH_Erica_Chat_More_Help_Oct2022_HL_G3_ericaChatHl&tid=9&cm_sp=DEP-Checking-_-Checking-Regular-_-DCB1QT5601_Highlights_NH_BAU_CHK_Refresh_G3_chkQ221HlHl&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUTB01_Highlights_NH_2023GeneralHLG3_bamdGeneralHl&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&cvdone=p HTTP/1.1
Host: testdata.coremetrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neutrinocms.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 13:57:42 GMT
Server: Apache
Vary: Host
Expires: Tue, 07 Feb 2023 13:57:42 GMT
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, no-transform, pre-check=0, post-check=0, private
Pragma: no-cache
Content-Length: 43
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Connection: close
Content-Type: image/gif
neutrinocms.com/index_files/49dbcc39.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/49dbcc39.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/49dbcc39.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:51 GMT
vary: Accept-Encoding
etag: W/"63dc06bf-8800b"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/fetch.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/fetch.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/fetch.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-2633"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/cau-login.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/cau-login.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/cau-login.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-1283"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/babel-polyfill(1).js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/babel-polyfill(1).js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/babel-polyfill(1).js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-17e38"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/otp.html
45.33.28.35200 OK 0 B IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /otp.html HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:37 GMT
content-type: text/html
last-modified: Tue, 07 Feb 2023 19:20:19 GMT
vary: Accept-Encoding
etag: W/"63e2a473-b3fde"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-code.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-code.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-code.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-49c"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-datepicker.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-datepicker.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-datepicker.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-d1d"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.102.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.102.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.102.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-2564"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/37add896.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/37add896.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/37add896.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-ff725"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.72.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.72.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.72.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-2185"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.108.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.108.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.108.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-2b81"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/require-css(1).js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/require-css(1).js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/require-css(1).js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-dc2"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
rail.bankofamerica.com/30306/hover.js?dt=login&r=0.9201211771261836
52.21.133.6200 OK 0 B URL HTTP/2 rail.bankofamerica.com/30306/hover.js?dt=login&r=0.9201211771261836
IP 52.21.133.6:0
GET /30306/hover.js?dt=login&r=0.9201211771261836 HTTP/1.1
Host: rail.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 13:57:41 GMT
content-type: application/x-javascript
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-textarea.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-textarea.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-textarea.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-6c2"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/require-css.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/require-css.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/require-css.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-a8a"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/otSDKStub.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/otSDKStub.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/otSDKStub.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-5398"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/7b98959e.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/7b98959e.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/7b98959e.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-eb778"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.85.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.85.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.85.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-2130"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/sparta-bootstrap-utility.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/sparta-bootstrap-utility.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/sparta-bootstrap-utility.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-6932"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/global-search-input-module.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/global-search-input-module.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/global-search-input-module.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-1b73"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-layout-support.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-layout-support.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-layout-support.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-4c2"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-meta.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-meta.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-meta.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-168d"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-strings.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-strings.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-strings.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-de2"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.48.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.48.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.48.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-2b9b"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.119.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.119.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.119.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:54 GMT
vary: Accept-Encoding
etag: W/"63dc06c2-6b913"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-select.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-select.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-select.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-9de"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/global-search-public-widget.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/global-search-public-widget.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/global-search-public-widget.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-110e"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.36.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.36.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.36.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-6529"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.42.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.42.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.42.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-450a"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.76.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.76.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.76.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-1b318"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/hover.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/hover.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/hover.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-11918"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-checkbox.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-checkbox.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-checkbox.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-8eb"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.37.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.37.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.37.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-2006"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.55.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.55.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.55.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-7c50"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.62.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.62.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.62.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-226db"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/fetch(1).js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/fetch(1).js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/fetch(1).js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-268e"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-data.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-data.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-data.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-759"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/GlanceCobrowseLoader_5.7.9M.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/GlanceCobrowseLoader_5.7.9M.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/GlanceCobrowseLoader_5.7.9M.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:54 GMT
vary: Accept-Encoding
etag: W/"63dc06c2-2e15"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/global-search-results-module.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/global-search-results-module.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/global-search-results-module.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-2505"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/bundles/7b98959e.js
192.229.233.230200 OK 0 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/bundles/7b98959e.js
IP 192.229.233.230:0
GET /homepage/spa-assets/bundles/7b98959e.js HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1097203
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Wed, 08 Feb 2023 13:57:41 GMT
etag: "eb778-5f179e5b5ed01"
expires: Thu, 08 Feb 2024 13:57:41 GMT
last-modified: Thu, 05 Jan 2023 01:05:30 GMT
server: ECS (ska/F71C)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LsYjA0YVCXXe2vzJQjmwAAAAw
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 206531
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-cinema.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-cinema.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-cinema.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-3240"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/otBannerSdk.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/otBannerSdk.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/otBannerSdk.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:54 GMT
vary: Accept-Encoding
etag: W/"63dc06c2-5f142"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/global-search-autocomplete-module.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/global-search-autocomplete-module.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/global-search-autocomplete-module.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-1a72"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/require.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/require.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/require.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:51 GMT
vary: Accept-Encoding
etag: W/"63dc06bf-656b"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-sparta.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-sparta.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-sparta.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-2a7b"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.35.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.35.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.35.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-c837"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/bc.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/bc.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/bc.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:55 GMT
vary: Accept-Encoding
etag: W/"63dc06c3-b91c7"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/helpers-radio-button.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/helpers-radio-button.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/helpers-radio-button.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:52 GMT
vary: Accept-Encoding
etag: W/"63dc06c0-9c7"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/utag.21.js
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/utag.21.js
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
fortinet Phishing
GET /index_files/utag.21.js HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-3b7c"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
neutrinocms.com/index_files/505b1c61.css
45.33.28.35200 OK 0 B URL HTTP/2 neutrinocms.com/index_files/505b1c61.css
IP 45.33.28.35:0
Analyzer Verdict Alert openphish Bank of America
GET /index_files/505b1c61.css HTTP/1.1
Host: neutrinocms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neutrinocms.com/otp.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 13:57:38 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 18:53:53 GMT
vary: Accept-Encoding
etag: W/"63dc06c1-1a8126"
expires: Thu, 09 Feb 2023 01:57:38 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2