baltik-pipe.com/
104.21.59.156301 Moved Permanently 0 B IP 104.21.59.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: baltik-pipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 21 Mar 2023 13:22:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 21 Mar 2023 14:22:53 GMT
Location: https://baltik-pipe.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mPI1izUU8qngUTAgLfIubDgrbpIpB6FGVf8XfuzBUecTWbJwnuv6scBJwTNld88eYuTI2Uj%2FGs499iJMiazES4%2F6xY%2FoyM5c2LQSYd8lIdILPDb2gK5cU77migm612aBPdE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ab6819ebe92b4eb-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5127
Expires: Tue, 21 Mar 2023 14:48:21 GMT
Date: Tue, 21 Mar 2023 13:22:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 28774b36cf8bb6b054329393a33f6239
728313ddff6d5ceb6db3eb8445f039779616a140
08378fe6a897ab5a9c8d3bc2748c9670659d0d0d164317fdfac88d23fee78fa0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08378FE6A897AB5A9C8D3BC2748C9670659D0D0D164317FDFAC88D23FEE78FA0"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Tue, 21 Mar 2023 14:39:38 GMT
Date: Tue, 21 Mar 2023 13:22:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3240
Expires: Tue, 21 Mar 2023 14:16:54 GMT
Date: Tue, 21 Mar 2023 13:22:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 21 Mar 2023 13:14:57 GMT
content-type: application/json
age: 477
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 74mqLCEJ2lXfEAZb5iUXse4U04cbflXK6U2Jd7W2l0ctCNtpL15s4R06sSKFqg2hl9BVYnLMelY=
x-amz-request-id: Y9PT2MVB71E6G545
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 21 Mar 2023 12:59:07 GMT
age: 1427
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 21 Mar 2023 13:22:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 4.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
Hash 78a3a180cee025d9f554762d9bc1e304
bbccd08a8d06d17d013ff3775ee3586cd5923658
29fc036040a20c2235626cba58cef9321446c085332c94be6a04f30524d12bd0
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 21 Mar 2023 13:17:22 GMT
age: 332
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 8985a972c00f9f53b82336f5eba2a27d
a3b08130ee04b846718f40c6fe5222cc38a84c92
e687a038ca84c19c9346b0c5a66d17453d343b11265843739939c08d136027fd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5024
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:54 GMT
Last-Modified: Tue, 21 Mar 2023 11:59:10 GMT
Server: ECAcc (ska/F7A7)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
34.240.171.169200 OK 104 B URL HTTP/1.1 dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
IP 34.240.171.169:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90a8ce4aa172e4b63430c93639257805
d30e7b2034df83180b28f024556a5534dce531c3
093ac6be731cba244fff837ea4fa57ab36e1fde5a5a53d9b36a467184eae87f5
GET /id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baltik-pipe.com
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://baltik-pipe.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v046-05f641722.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 198
X-TID: qLDSJa/gSDs=
Content-Length: 104
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6102
Expires: Tue, 21 Mar 2023 15:04:37 GMT
Date: Tue, 21 Mar 2023 13:22:55 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 9cf32c34ea708f62eb4b3548f8f7f395
218e5f1af313d017f46140190d5efe7cb961b4f5
210191f12b277eb3aa94501df631a7ee9792902e8d54de16b81068f323f5c383
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "210191F12B277EB3AA94501DF631A7EE9792902E8D54DE16B81068F323F5C383"
Last-Modified: Tue, 21 Mar 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2892
Expires: Tue, 21 Mar 2023 14:11:07 GMT
Date: Tue, 21 Mar 2023 13:22:55 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 1f965c606b313d28c3b783f5555482e8
d919ebccddb2afeacffdd99cff14e062b5e16ec9
f79f19f371467d54e5cc55da5b83522343e89c47167099d29045a153245c866d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "F79F19F371467D54E5CC55DA5B83522343E89C47167099D29045A153245C866D"
Last-Modified: Tue, 21 Mar 2023 05:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2906
Expires: Tue, 21 Mar 2023 14:11:21 GMT
Date: Tue, 21 Mar 2023 13:22:55 GMT
Connection: keep-alive
target.bankofamerica.com/m2/bankofamerica/mbox/json?mbox=target-global-mbox&mboxSession=306d1a90d39a45168be355e6b6f22793&mboxPC=&mboxPage=da9b13075c1b45cc998920a37e0b0a6c&mboxRid=f8d7dde906c1450eb650f4324f801330&mboxVersion=1.8.0&mboxCount=1&mboxTime=1679404978059&mboxHost=baltik-pipe.com&mboxURL=https%3A%2F%2Fbaltik-pipe.com%2F&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxState=No%20State%20Selected
54.247.55.240200 OK 142 B URL HTTP/2 target.bankofamerica.com/m2/bankofamerica/mbox/json?mbox=target-global-mbox&mboxSession=306d1a90d39a45168be355e6b6f22793&mboxPC=&mboxPage=da9b13075c1b45cc998920a37e0b0a6c&mboxRid=f8d7dde906c1450eb650f4324f801330&mboxVersion=1.8.0&mboxCount=1&mboxTime=1679404978059&mboxHost=baltik-pipe.com&mboxURL=https%3A%2F%2Fbaltik-pipe.com%2F&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxState=No%20State%20Selected
IP 54.247.55.240:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a74051ecb12f67b254f505234ffbf4ac
3b441a452cd599835284766934f11eb36810b154
21b957b489349bef42ab541e6371a48a6c4e31e69273bfd21ae433bddae65717
GET /m2/bankofamerica/mbox/json?mbox=target-global-mbox&mboxSession=306d1a90d39a45168be355e6b6f22793&mboxPC=&mboxPage=da9b13075c1b45cc998920a37e0b0a6c&mboxRid=f8d7dde906c1450eb650f4324f801330&mboxVersion=1.8.0&mboxCount=1&mboxTime=1679404978059&mboxHost=baltik-pipe.com&mboxURL=https%3A%2F%2Fbaltik-pipe.com%2F&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxState=No%20State%20Selected HTTP/1.1
Host: target.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baltik-pipe.com
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 21 Mar 2023 13:22:55 GMT
content-type: application/json;charset=UTF-8
content-length: 142
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://baltik-pipe.com
access-control-allow-credentials: true
x-request-id: f8d7dde906c1450eb650f4324f801330
p3p: CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
set-cookie: bankofamerica!mboxSession=306d1a90d39a45168be355e6b6f22793; Max-Age=1860; Expires=Tue, 21-Mar-2023 13:53:55 GMT; Domain=target.bankofamerica.com; Path=/; Secure; HttpOnly; SameSite=None
bankofamerica!mboxPC=306d1a90d39a45168be355e6b6f22793.37_0; Max-Age=63244800; Expires=Sat, 22-Mar-2025 13:22:55 GMT; Domain=target.bankofamerica.com; Path=/; Secure; HttpOnly; SameSite=None
pragma: no-cache
cache-control: no-cache
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.84.125101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.84.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OBnrG/BxHhW+XgCQKSZrmQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +Qg0TR6Dmn4h9GjE2yUVrAMV2dY=
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=bofa/mcoe/202302230535&cb=1679404978554
54.230.111.11200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=bofa/mcoe/202302230535&cb=1679404978554
IP 54.230.111.11:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=bofa/mcoe/202302230535&cb=1679404978554 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2
last-modified: Tue, 28 Feb 2023 19:57:59 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 0u1KMWwhMzyT6lrE3BqQv2vcWKCAIMxo
accept-ranges: bytes
server: AmazonS3
date: Tue, 21 Mar 2023 13:19:56 GMT
etag: "7bc0ee636b3b83484fc3b9348863bd22"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YubXyf5AvQUmByWHlFeo0ZRHt2pNlpbF45Qy2guK1j6FvmDSuZKE1Q==
age: 180
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.10.js?utv=ut4.48.202302230535
54.230.111.11200 OK 2.2 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.10.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
File type ASCII text, with very long lines (1048)
Hash 7c6b9eadad6dffcc8c44d65fe8487982
4a233555f27db02a65b065d459df0a33611b5347
94b4fc050a411a507ab546c1257c6e55aa779e8ff33035eee4a069c5e5fdb35c
GET /utag/bofa/mcoe/prod/utag.10.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: UTSCPYfls_kRbcHohrzr8Dh5BEfCfFZH
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"45841a5d52a0b191228fda5052ce12f3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7SCGaDesmH_jYVUqEImUj7Qg1uEUApBWYruPKeICfTZLUY__QBFCZg==
age: 155
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.60.js?utv=ut4.48.202208192121
54.230.111.11200 OK 39 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.60.js?utv=ut4.48.202208192121
IP 54.230.111.11:0
File type ASCII text, with very long lines (11445)
Hash b21b51b096e5c8b1cc320e6589e266c1
24f95c034dc1b1eec6e7aa5a745c7b0f07d86f16
31a6e14c2baebdf727769a974ae2c5211869c2a547240cc843982e57459ac47f
GET /utag/bofa/mcoe/prod/utag.60.js?utv=ut4.48.202208192121 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: _YL2wmgShwbOt.3YnpQKXtVJLMxStBDI
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:18:17 GMT
etag: W/"84d4f128d7506e4a3cd5c4a40690d801"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yoOhT9kruCNBo6ByeFYW5DDE7X33jmO2c8eu_2ZjcdoDWhyP_mHWMw==
age: 279
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 9fd2ee8f48713671dbd7e843e122e26b
5fd5e4d55a8121e3da37602e73cbbc658e808f2b
98a9907d0a7ecd16324405f24e685c7c23be3f3360b1ee0fe75fdb295f215124
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "98A9907D0A7ECD16324405F24E685C7C23BE3F3360B1EE0FE75FDB295F215124"
Last-Modified: Tue, 21 Mar 2023 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2869
Expires: Tue, 21 Mar 2023 14:10:44 GMT
Date: Tue, 21 Mar 2023 13:22:55 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 38d8047ca2045200f0cac13041a1d88f
37b06f9978e5de50a3769981c9408cffaf5c3185
adbbcfb19926e3c6373d5f207c53b8b825bd5f72ac2208cdf1b800de41f4463e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash bfa45bb31acdcad04104ab759ca396b0
f8290df5a249f0dd192fec38584618205b2d4bc7
97b4f123c07d8ccbbb7f6757f55e2b2b055ea296a29f52a729efdc996e9c8592
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.43.js?utv=ut4.48.202302230535
54.230.111.11200 OK 10 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.43.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1453)
Hash 949d8c45a7e2d4315fcde7475ce52bf7
172d35713b10ccda8939399901af914951d1c503
5ee4a21c59b458c0da6b4de4439244abe22a8c932e340d94f579b2dab9c4c328
GET /utag/bofa/mcoe/prod/utag.43.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: klkMd5d_cMdWbpIhYuCEec2f_mcHfP7k
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"46f95a539d119193b2f89de254dbda69"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SOl_md62HP1EiKvsequ-Jc1uRSLnwx1rEVgdd_G_ugvNzi9nkUo2IQ==
age: 14
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash bfa45bb31acdcad04104ab759ca396b0
f8290df5a249f0dd192fec38584618205b2d4bc7
97b4f123c07d8ccbbb7f6757f55e2b2b055ea296a29f52a729efdc996e9c8592
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2f656ecf7dfa2c439943f8adc7af7af3
7e1e963c5a29b4355c05a3824b9cab61c8c8e98b
a5eacea5ab24e16191f73cab5a4554ccc2a5150db6b578c478e078f28793c51b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sofa.bankofamerica.com/cookie-id.js?fn=saveCMCookieToDDO
54.224.36.233200 OK 65 B URL HTTP/1.1 sofa.bankofamerica.com/cookie-id.js?fn=saveCMCookieToDDO
IP 54.224.36.233:0
File type ASCII text, with no line terminators
Hash d2673e00a77d014384b757ea9778795a
e969e2f948253544a72f74de9e0cab193415594a
51f380e4abbdf4b680c54f673835d4dd976e5355955a71f3b12191dbff588a82
GET /cookie-id.js?fn=saveCMCookieToDDO HTTP/1.1
Host: sofa.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:22:55 GMT
Server: Apache
Vary: Host
Content-Length: 65
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Connection: close
Content-Type: application/x-javascript
adservice.google.no/ddm/fls/i/src=1359940;type=educa140;cat=2016_027;ord=1;num=5922972785857;gtm=2od6f0;auiddc=1199953808.1679404979;~oref=https%3A%2F%2Fbaltik-pipe.com%2F
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=1359940;type=educa140;cat=2016_027;ord=1;num=5922972785857;gtm=2od6f0;auiddc=1199953808.1679404979;~oref=https%3A%2F%2Fbaltik-pipe.com%2F
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=1359940;type=educa140;cat=2016_027;ord=1;num=5922972785857;gtm=2od6f0;auiddc=1199953808.1679404979;~oref=https%3A%2F%2Fbaltik-pipe.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 21 Mar 2023 13:22:55 GMT
expires: Tue, 21 Mar 2023 13:22:55 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.14.js?utv=ut4.48.202208192121
54.230.111.11200 OK 920 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.14.js?utv=ut4.48.202208192121
IP 54.230.111.11:0
File type ASCII text, with very long lines (1048)
Hash 52d3d5d6da7065a26dcd5540c4335dca
88ebffca84b50e4970828515aa9716368d6d48b6
43c0db8a4d550c081e2d45578f1f277a6cfb53847704cf20a3c8d27b342540f7
GET /utag/bofa/mcoe/prod/utag.14.js?utv=ut4.48.202208192121 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 5J7SQFjAEoIRHefQOd8.NjB_.OjkvqjJ
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"5c156d9925737ace3b93f25db03b5c46"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KMMg69LLfvfj7KbcHj-Qb-VgVz2AWd8jWpw5yaQxDo20yn5Y3my68Q==
age: 264
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2f656ecf7dfa2c439943f8adc7af7af3
7e1e963c5a29b4355c05a3824b9cab61c8c8e98b
a5eacea5ab24e16191f73cab5a4554ccc2a5150db6b578c478e078f28793c51b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7a804465857c1803473f847eaa77ab74
36de577db7e64adbe4744f848af421129c1a0310
573216c96c4a45b60286db3a25f6c2ec42e3f55540d6f1e7c2dfc04a25a82b99
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "573216C96C4A45B60286DB3A25F6C2EC42E3F55540D6F1E7C2DFC04A25A82B99"
Last-Modified: Tue, 21 Mar 2023 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3072
Expires: Tue, 21 Mar 2023 14:14:08 GMT
Date: Tue, 21 Mar 2023 13:22:56 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7007d84ff55a87832120dfe374b48c34
013ad054ed7efd33bd1fadadb083677ef2f14b2e
76d115f3069d5bb133b2b115aa15b0f5183d64ae2746cbee3cd7a20592685d4e
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "76D115F3069D5BB133B2B115AA15B0F5183D64AE2746CBEE3CD7A20592685D4E"
Last-Modified: Tue, 21 Mar 2023 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2881
Expires: Tue, 21 Mar 2023 14:10:57 GMT
Date: Tue, 21 Mar 2023 13:22:56 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8252dadd968ec1f294252ff1328a1f08
8612446f27ae9ce296270c969845a784dcc7569b
84717d4c360be2750d3e28827fa865c9616395cd3463ac03245b57baa8887e35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.58.207.206200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 21 Mar 2023 11:53:25 GMT
expires: Tue, 21 Mar 2023 13:53:25 GMT
cache-control: public, max-age=7200
age: 5371
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8252dadd968ec1f294252ff1328a1f08
8612446f27ae9ce296270c969845a784dcc7569b
84717d4c360be2750d3e28827fa865c9616395cd3463ac03245b57baa8887e35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1438280001&t=pageview&_s=1&dl=https%3A%2F%2Fbaltik-pipe.com%2F&ul=en-us&de=UTF-8&dt=How%20to%20Start%20Saving%20Money%3A%208%20Money%20Saving%20Tips&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2029887602&gjid=29803641&cid=403862831.1679404979&tid=UA-82323589-3&_gid=697225579.1679404979&_r=1&_slc=1&cd1=savingbudgeting&cd2=listicle&cd3=Prospect&cd4=1013&z=1539097772
216.58.207.206200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1438280001&t=pageview&_s=1&dl=https%3A%2F%2Fbaltik-pipe.com%2F&ul=en-us&de=UTF-8&dt=How%20to%20Start%20Saving%20Money%3A%208%20Money%20Saving%20Tips&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2029887602&gjid=29803641&cid=403862831.1679404979&tid=UA-82323589-3&_gid=697225579.1679404979&_r=1&_slc=1&cd1=savingbudgeting&cd2=listicle&cd3=Prospect&cd4=1013&z=1539097772
IP 216.58.207.206:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1438280001&t=pageview&_s=1&dl=https%3A%2F%2Fbaltik-pipe.com%2F&ul=en-us&de=UTF-8&dt=How%20to%20Start%20Saving%20Money%3A%208%20Money%20Saving%20Tips&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2029887602&gjid=29803641&cid=403862831.1679404979&tid=UA-82323589-3&_gid=697225579.1679404979&_r=1&_slc=1&cd1=savingbudgeting&cd2=listicle&cd3=Prospect&cd4=1013&z=1539097772 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://baltik-pipe.com
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://baltik-pipe.com
date: Tue, 21 Mar 2023 13:22:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sofa.bankofamerica.com/cm?tid=6&ci=90010394&vn2=e4.0&st=1679404978515&vn1=4.2.7.1BOA&ec=UTF-8&pi=Ent%3AContent%3AEducationHub%3Bitem_listicle_savingbudgeting_waystosavemoney_EN&cg=Ent%3AContent%3AEducationHub&pv8=%7Ccck%7C%7Crez_1280_939%7C&rnd=1679410426502&pc=Y&jv=1.5&je=n&sw=1280&sh=1024&pd=24&tz=0&ul=https%3A//baltik-pipe.com/&pv_a1=%7Ccck%7C%7Crez_1280_939%7C&pv_a3=null&pv_a4=null&pv_a5=null&pv_a6=null&pv_a7=null&pv_a8=null&pv_a10=1&cvdone=p
54.224.36.233200 OK 43 B URL HTTP/1.1 sofa.bankofamerica.com/cm?tid=6&ci=90010394&vn2=e4.0&st=1679404978515&vn1=4.2.7.1BOA&ec=UTF-8&pi=Ent%3AContent%3AEducationHub%3Bitem_listicle_savingbudgeting_waystosavemoney_EN&cg=Ent%3AContent%3AEducationHub&pv8=%7Ccck%7C%7Crez_1280_939%7C&rnd=1679410426502&pc=Y&jv=1.5&je=n&sw=1280&sh=1024&pd=24&tz=0&ul=https%3A//baltik-pipe.com/&pv_a1=%7Ccck%7C%7Crez_1280_939%7C&pv_a3=null&pv_a4=null&pv_a5=null&pv_a6=null&pv_a7=null&pv_a8=null&pv_a10=1&cvdone=p
IP 54.224.36.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /cm?tid=6&ci=90010394&vn2=e4.0&st=1679404978515&vn1=4.2.7.1BOA&ec=UTF-8&pi=Ent%3AContent%3AEducationHub%3Bitem_listicle_savingbudgeting_waystosavemoney_EN&cg=Ent%3AContent%3AEducationHub&pv8=%7Ccck%7C%7Crez_1280_939%7C&rnd=1679410426502&pc=Y&jv=1.5&je=n&sw=1280&sh=1024&pd=24&tz=0&ul=https%3A//baltik-pipe.com/&pv_a1=%7Ccck%7C%7Crez_1280_939%7C&pv_a3=null&pv_a4=null&pv_a5=null&pv_a6=null&pv_a7=null&pv_a8=null&pv_a10=1&cvdone=p HTTP/1.1
Host: sofa.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://baltik-pipe.com/
Connection: keep-alive
Cookie: CoreID6=83031679404975303040404; TestSess3=83031679404975303040404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:22:56 GMT
Server: Apache
Vary: Host
Expires: Mon, 20 Mar 2023 13:22:56 GMT
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, no-transform, pre-check=0, post-check=0, private
Pragma: no-cache
Content-Length: 43
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Set-Cookie: 90010394_login=1679404976258646690790010394; path=/;SameSite=None;Secure
90010394_reset=1679404976;path=/;SameSite=None;Secure
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 43229f902489cc88a3b8f77dea901852
28e63d8d5a952b9e568cad6feda0e211e1fbfdda
245bfd30b6d87d590e50452fd8672d82d9d441242b4603fcc007e70b6a56685b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tilt.bankofamerica.com/4779/handler9/session.json
171.161.118.28403 Forbidden 0 B URL HTTP/1.1 tilt.bankofamerica.com/4779/handler9/session.json
IP 171.161.118.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /4779/handler9/session.json HTTP/1.1
Host: tilt.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1520
Origin: https://baltik-pipe.com
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Tue, 21 Mar 2023 13:22:56 GMT
X-Content-Type-Options: nosniff
Content-Length: 0
X-SZ-Serviced-By: Vc/NaOVMyEXqlgMfIxS+6Q==--PK7dcL2zVXLsvmMDfbsHew==
Keep-Alive: timeout=30, max=498
Connection: Keep-Alive
X-Serviced-By: QA5FIoABF+Zhh4kVns5v1Q==--2vUpxsPy/EsoqcSawNOAog==
Strict-Transport-Security: max-age=31536000
Set-Cookie: SID=0024C23CEB006419AFB0;Path=/
TS01d6ed41=01ad64844a452d9c037afd5ba7a43d9a81f15a0355ff5a8c03d5baf768ab3fd3c9b1d943ab43eed382b91df4d1f606315bce551dcf; Path=/; Secure
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-82323589-3&cid=403862831.1679404979&jid=2029887602&gjid=29803641&_gid=697225579.1679404979&_u=IEBAAEAAAAAAACAAI~&z=1353901649
209.85.233.154200 OK 180 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-82323589-3&cid=403862831.1679404979&jid=2029887602&gjid=29803641&_gid=697225579.1679404979&_u=IEBAAEAAAAAAACAAI~&z=1353901649
IP 209.85.233.154:0
Hash 9a9318f3f66ecfb77632bb033d924c38
cd5ca7128b4ad314f3763bb6cb99a2e0bef4d5b8
a55e2e5476d6aea6c6359a7dfa6b83d7519074a16ed5cc7218d06a3d2828ea3a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-82323589-3&cid=403862831.1679404979&jid=2029887602&gjid=29803641&_gid=697225579.1679404979&_u=IEBAAEAAAAAAACAAI~&z=1353901649 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://baltik-pipe.com
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://baltik-pipe.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 21 Mar 2023 13:22:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5533
Expires: Tue, 21 Mar 2023 14:55:09 GMT
Date: Tue, 21 Mar 2023 13:22:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5533
Expires: Tue, 21 Mar 2023 14:55:09 GMT
Date: Tue, 21 Mar 2023 13:22:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5533
Expires: Tue, 21 Mar 2023 14:55:09 GMT
Date: Tue, 21 Mar 2023 13:22:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faacc3f97-56a5-4bb4-802f-dc4b529c41d3.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faacc3f97-56a5-4bb4-802f-dc4b529c41d3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59df3b8c484422b14b057fddfd99beb3
d7347bcac5fc585b802d9be262c9536d0f72a498
c05014345e897447f7bdcc3b7d267137bbf76758e8fecfbabcb20d09889769f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faacc3f97-56a5-4bb4-802f-dc4b529c41d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6632
x-amzn-requestid: e51ff988-1417-4d22-8540-82914428fdcd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CBFaIHZ8IAMF3lQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6416b5da-744c064c55ad8d3401855d0f;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 07:12:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: FsFKERMeCkoD4DFnD-sjKYiRB8izHSQszlkxg7L7jaBgGy4ASvpkkQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 12:12:35 GMT
age: 4221
etag: "d7347bcac5fc585b802d9be262c9536d0f72a498"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f73dbc0fc3d196647ddc1e30450989d4
75d0a1414a5d350ba426dc37333a6ea131f66753
2a6954b3ccf01567c0c0c2911dd8b02c1cd264fc78178cef2eef6a6796c16c3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10855
x-amzn-requestid: bb845712-834d-49b1-97f0-f3750f132741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEZD0GCHIAMFq6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418087e-4361bbd40ec5f0d10dabdf85;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:17:18 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: d81ObS_T4QBMAr1KU_lJ1hJC4FMqpJNCreDNuU481S4RZo3aQxMkaQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 6bdc2963c9ed59b475ec36c35e5932a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 07:20:22 GMT
age: 21754
etag: "75d0a1414a5d350ba426dc37333a6ea131f66753"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc7839c7-2b7e-47fa-a8d7-b001f2527406.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc7839c7-2b7e-47fa-a8d7-b001f2527406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e7f3f5682ef230a0e5ead556ccbb9c8d
93bcb7e0d7f2e7648f2749060e0a58bca3a033b9
e63beb09275f78a899e992ce814b4a079aaf38a4932a32b9f9431552702224b8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc7839c7-2b7e-47fa-a8d7-b001f2527406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11397
x-amzn-requestid: 9c96a37a-b2e6-46f1-94dd-1a299da61a02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWw1HwVIAMF0Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d19e-0638254835be22cc17465cc2;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:35:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: g2YNKMDYmcQl3rpt8G2tHJFrBf25_aNKA4v4WKBgpCQeEWEnwgbkYg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:45:17 GMT
etag: "93bcb7e0d7f2e7648f2749060e0a58bca3a033b9"
content-type: image/jpeg
age: 56259
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.45.js?utv=ut4.48.202302230535
54.230.111.11200 OK 10 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.45.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 482b4db845d81303ea8fc2784b4c52fc
34b2bcc6994ffe9e09184179fa1467f701a1cfe9
d35d942ebdabff0d6b667632543afccf6ea8b4637b9255d6c921b470e61e426e
GET /utag/bofa/mcoe/prod/utag.45.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 4x0czWDU_YiXkvmdCeHa_RgiyP2TlCS3
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"6e96690accb31ded269e15549465f1a9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c4Krjq34mxT_SBQh1ZhkXLVqhowsjsd8pQBnE5fvGReviF-H6a7Agw==
age: 43
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg
IP 34.120.237.76:0
Hash fb54f90db5521bc8b133fcb67e351d6e
fb65c0c27ebb17271bd4c2a2cd99f09f382e2553
bbd26f6dc5073d9e811c23e8490537b9e6e0de1936145f20b01ee89f79eed1a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 82d12180-bdcb-4ce0-8588-4239ee27f236
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI_E_eoAMF3sA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-2f5df7cd5f6cee4762703d29;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: sTt0-W1XE7yUFGFXg2nPnKw5tKKkrw-cH_TCIbQy8JL-k0QtCNZS8w==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:52:08 GMT
age: 55848
etag: "71672a6c3523d9999522e005091863d07ea0e94a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a940b362660fdee25faaa51e08c439b
85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c
18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8195
x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDFESEDGoAMFQ8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: hZeMhs-Z5fNn0pvRUSkNcGau_K6EG9EQtDktbLUth0uEveafUgCxeQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 85ee490c179dc0af42b771f11421073e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:07:00 GMT
age: 54956
etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 43229f902489cc88a3b8f77dea901852
28e63d8d5a952b9e568cad6feda0e211e1fbfdda
245bfd30b6d87d590e50452fd8672d82d9d441242b4603fcc007e70b6a56685b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 13:22:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.2.js?utv=ut4.48.202302230535
54.230.111.11200 OK 56 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.2.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
File type ASCII text, with very long lines (1048)
Hash 0837e1cc54188069d6a4a7ea130da072
71e6fbd3e00424a2218c4c726fb8091a0a85f36c
df1fe6a7f9d1b480a77b29c01604845800c02b793b8096257ed9e14e34072255
GET /utag/bofa/mcoe/prod/utag.2.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: CNW0MlSCzCrKxfmEyhK6KsEyWJUIgk1t
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"9a76c0a2b1ff45a8b7799edf192157f4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Uh4KR3EWBL34sc1ZQbATvlb5wFnDFckmGCcAa8sqggSUs1FbQCOAvQ==
age: 279
X-Firefox-Spdy: h2
www.bankofamerica.com/pa/global-assets/external/demandbase/js_min/CoreModule.js?Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs
171.159.116.100200 OK 77 kB URL HTTP/1.1 www.bankofamerica.com/pa/global-assets/external/demandbase/js_min/CoreModule.js?Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs
IP 171.159.116.100:0
File type ASCII text, with very long lines (64782)
Hash 89c5fc8e909204d33b40e406a812d23f
a75bf691d8708154789ac38f24f76c4edbee0926
2d2a4fd42c4e1c41faf4429673483fa90b98d05ab7979d7c218d91b795ee3d3a
GET /pa/global-assets/external/demandbase/js_min/CoreModule.js?Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs HTTP/1.1
Host: www.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 09:11:55 GMT
ETag: "12bbf-5e65823c516d9"
Accept-Ranges: bytes
X-BOA-RequestID: ZBksRYbunkHxf-2u71rHVAAAACc
Keep-Alive: timeout=40, max=500
Content-Type: application/x-javascript
X-Serviced-By: /pa/global-assets/external/demandbase/js_min/CoreModule.js--W1I5p5pOC81om9aH2cvFTA==--OMiWoM4gElxERAjFkIl/dA==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' *.bac-assets.com cdn.cookielaw.org *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com api.boldchat.com anrdoezrs.com cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
Connection: Keep-Alive
Date: Tue, 21 Mar 2023 13:22:57 GMT
Age: 273
Content-Length: 76735
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.55.js?utv=ut4.48.202208192121
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.55.js?utv=ut4.48.202208192121
IP 54.230.111.11:0
GET /utag/bofa/mcoe/prod/utag.55.js?utv=ut4.48.202208192121 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: _d1YYIprUA92cAftkVTv_CqBE90YTZ3Z
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:18:31 GMT
etag: W/"55c7b178ba320bf55d88dd1f17fd2162"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tPrHHwNVxsLCvA8_FeMRhrjoWdWcEZI91CadR6HVpJyI6ypxfdisnQ==
age: 265
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.sync.js
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.sync.js
IP 54.230.111.11:0
GET /utag/bofa/main/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:21:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: ZiyacWoC7.MTjrm4XrCOKnVtxJPPXZ9S
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:54 GMT
etag: W/"7c08b97bd1392987166987ba50c8837a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f3kWE9l_W6atgv5hYtaaatfEo3lnLGRYLAeCzIQ6VuR9lkFH8ex_dA==
age: 65
X-Firefox-Spdy: h2
znczuxiczndmh7vpb-bankofamerica.siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_InterceptID=SI_b449LhmqtZGXSEm&Q_LOC=https%3A%2F%2Fbaltik-pipe.com%2F&Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs
104.17.209.240200 OK 0 B URL HTTP/2 znczuxiczndmh7vpb-bankofamerica.siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_InterceptID=SI_b449LhmqtZGXSEm&Q_LOC=https%3A%2F%2Fbaltik-pipe.com%2F&Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs
IP 104.17.209.240:0
GET /WRSiteInterceptEngine/Targeting.php?Q_InterceptID=SI_b449LhmqtZGXSEm&Q_LOC=https%3A%2F%2Fbaltik-pipe.com%2F&Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs HTTP/1.1
Host: znczuxiczndmh7vpb-bankofamerica.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baltik-pipe.com
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 21 Mar 2023 13:22:57 GMT
content-type: application/json
cf-ray: 7ab681b21d3db511-OSL
access-control-allow-origin: https://baltik-pipe.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
last-modified: Tue, 21 Mar 2023 13:22:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: eafa29cf741cb883
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
baltik-pipe.com/
104.21.59.156200 OK 0 B IP 104.21.59.156:0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: baltik-pipe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 21 Mar 2023 13:22:54 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _subid=s8hnpa4lvu;Expires=Friday, 21-Apr-2023 13:22:54 GMT;Max-Age=2678400;Path=/
5e477=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjc3N1wiOjE2Nzk0MDQ5NzR9LFwiY2FtcGFpZ25zXCI6e1wiMjIzXCI6MTY3OTQwNDk3NH0sXCJ0aW1lXCI6MTY3OTQwNDk3NH0ifQ.oQE9AI6lY6SI6VyoW8C8lfi7ei3s-JNc_tHIZgEuLZg;Expires=Tuesday, 09-Jun-2076 02:45:48 GMT;Max-Age=1679491374;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lQ6R6iSKqAaCK3V09nD0LrkBi4HbSuw%2B8Zq5E8iWHehuM9Xd%2FjzG5BaJp5W5fwcS%2B9A25ol114NNts2c1vFElNow5QPPncwGhMKhmRNvvqmyqW5L%2FLHTq32I8xK%2FyaWYVmY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ab681a03bafb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tags.tiqcdn.com/dle/bofa/mcoe/prod-_-ent-content-educationhub-item_listicle_.js
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/dle/bofa/mcoe/prod-_-ent-content-educationhub-item_listicle_.js
IP 54.230.111.11:0
GET /dle/bofa/mcoe/prod-_-ent-content-educationhub-item_listicle_.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 16 Mar 2023 17:08:02 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"672dfdff0b9dc2add5844916e1ef6d2a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oGqxPf7Hg1mfSPQuikQe34jkcuC9X-uj-9o2RnxPQARWf5i2Cijo5Q==
age: 980
X-Firefox-Spdy: h2
znczuxiczndmh7vpb-bankofamerica.siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_InterceptID=SI_b449LhmqtZGXSEm&Q_LOC=https%3A%2F%2Fbaltik-pipe.com%2F&Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs&t=1679404980470&Q_VSI=%7B%22SI_b449LhmqtZGXSEm%22%3A%22DependencyResolver%22%7D&Q_DPR=true
104.17.209.240200 OK 0 B URL HTTP/2 znczuxiczndmh7vpb-bankofamerica.siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_InterceptID=SI_b449LhmqtZGXSEm&Q_LOC=https%3A%2F%2Fbaltik-pipe.com%2F&Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs&t=1679404980470&Q_VSI=%7B%22SI_b449LhmqtZGXSEm%22%3A%22DependencyResolver%22%7D&Q_DPR=true
IP 104.17.209.240:0
POST /WRSiteInterceptEngine/Targeting.php?Q_InterceptID=SI_b449LhmqtZGXSEm&Q_LOC=https%3A%2F%2Fbaltik-pipe.com%2F&Q_CLIENTVERSION=1.1.2&Q_CLIENTTYPE=hostedjs&t=1679404980470&Q_VSI=%7B%22SI_b449LhmqtZGXSEm%22%3A%22DependencyResolver%22%7D&Q_DPR=true HTTP/1.1
Host: znczuxiczndmh7vpb-bankofamerica.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 9
Origin: https://baltik-pipe.com
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 21 Mar 2023 13:22:57 GMT
content-type: application/json
cf-ray: 7ab681b4f9b3b511-OSL
access-control-allow-origin: https://baltik-pipe.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: b9df249550bc310d
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.51.js?utv=ut4.48.202302230535
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.51.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
GET /utag/bofa/mcoe/prod/utag.51.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: T5xa09kOifgGQRnV82hSb0wLaF68W3Xd
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"962e66765b1d61bd6cc481b7fff43acc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tY_S35W5kXw_6Jqq7nOLxjIDvh-ZvkQDb2lOyxv4giIa1bcGkc6Mlw==
age: 43
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.21.js?utv=ut4.48.202111130309
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.21.js?utv=ut4.48.202111130309
IP 54.230.111.11:0
GET /utag/bofa/mcoe/prod/utag.21.js?utv=ut4.48.202111130309 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: ZtfRIoWsNP4dhPqQbq10.YVfglV_7M49
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"54f77ef8b275439ff7a42639b9a2667f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QeNBUGrSPyCXVVLq9l298pcwKeEw4qqkK-mvVBmwmo64o2G5ML9Neg==
age: 15
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.32.js?utv=ut4.48.202302230535
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.32.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
GET /utag/bofa/mcoe/prod/utag.32.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: R0k.cpXRvYMG1RL9fB1cGx915R.M8VzP
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"7684d027b74a150bea59072c4fe28154"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2mcK6qvcEWWb5X-UgbvhgRLqE8G-oIwwRc5AtYR_lDYMf-L3O1Op-A==
age: 14
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.42.js?utv=ut4.48.202302230535
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.42.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
GET /utag/bofa/mcoe/prod/utag.42.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: t5y2BbE6re2ze17VN7L63YRLiyB.POih
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"6da35cc8919900556a05439e265000e5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7fn0Wkavc8NGDejwbDTrqU0oT_OdgUROUimlRrctYJJ7Te19yM-cXA==
age: 43
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.49.js?utv=ut4.48.202302230535
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.49.js?utv=ut4.48.202302230535
IP 54.230.111.11:0
GET /utag/bofa/mcoe/prod/utag.49.js?utv=ut4.48.202302230535 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: BTkuTAL4fPB4u07grsE6zdz7ldJ1CA1f
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"87b6bdc3507ce4dc19b02d789dded72f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k-XcgMlq3-tvnoNSfUrewhIHC-tbL_f-jbYZL5MU4SbaYzAmUwxh4A==
age: 67
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.js
54.230.111.11200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/mcoe/prod/utag.js
IP 54.230.111.11:0
GET /utag/bofa/mcoe/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://baltik-pipe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 06:20:51 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: wGKgNmhZj9CJ2iEEoRBizErsk2tVOTxI
server: AmazonS3
content-encoding: br
date: Tue, 21 Mar 2023 13:22:55 GMT
etag: W/"d7b80df03aed322d9f88411233015d2d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MeBP1Ff6OfMSJ8TJR8pvJjTKtgoLhSS7egyI57d7vkLx7-_88osrgQ==
age: 68
X-Firefox-Spdy: h2