r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2362
Expires: Mon, 06 Feb 2023 21:03:48 GMT
Date: Mon, 06 Feb 2023 20:24:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4313
Expires: Mon, 06 Feb 2023 21:36:19 GMT
Date: Mon, 06 Feb 2023 20:24:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 19:34:06 GMT
content-type: application/json
age: 3020
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4043
Expires: Mon, 06 Feb 2023 21:31:49 GMT
Date: Mon, 06 Feb 2023 20:24:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pbImNhOe80ibJ4yxHearEpR18cgov2DttXfM9n5E0ugexo3ufYnITufNFvHpdQDZ/svEufUwvSg=
x-amz-request-id: RK632FC4KC36W37M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 19:45:17 GMT
age: 2349
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 20:24:26 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cookie-id.js
69.162.186.127200 OK 65 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cookie-id.js
IP 69.162.186.127:0
File type ASCII text, with no line terminators
Hash d2673e00a77d014384b757ea9778795a
e969e2f948253544a72f74de9e0cab193415594a
51f380e4abbdf4b680c54f673835d4dd976e5355955a71f3b12191dbff588a82
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cookie-id.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 65
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 19:51:19 GMT
age: 1988
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/require.js
69.162.186.127200 OK 26 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/require.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (25925)
Hash 6f1fc7a2bd01d7f0b72d7dd4f2a13fba
8d56f10d8e0030d59cc4d41fee45b998ed86ab41
3c07fca41c0264691556bb4551861209b63fb504abe71e829eff2ec75558c6d2
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/require.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 25963
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20724
Expires: Tue, 07 Feb 2023 02:09:51 GMT
Date: Mon, 06 Feb 2023 20:24:27 GMT
Connection: keep-alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/babel-polyfill.js
69.162.186.127200 OK 98 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/babel-polyfill.js
IP 69.162.186.127:0
File type Unicode text, UTF-8 text, with very long lines (32008), with LF, NEL line terminators
Hash e78847ae9c2ab2cdec94f3328ca53b93
b94dbaa1b967ce01dd5f27467f9497eb483a4403
d29b4304625e55cffd5e646bebf9d589034ee99d546e1f70ea91ac21da47c955
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/babel-polyfill.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 97848
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: msKYWEq4WXJvd7W2QslY5A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O11K2KmilrhpSHGrsl0uX+05p4s=
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_003.js
69.162.186.127200 OK 181 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_003.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (9513)
Size 181 kB (181418 bytes)
Hash d04581d9b92821d51ae76c98f4b25911
37e1b8aa60f32222d6dcd49e5ea160adaf256d14
1f1029105f90b4a2c58e7380cccb43d8ce1fca8667e8d29cc3535d46119a82af
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_003.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 181418
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
69.162.186.127200 OK 419 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
IP 69.162.186.127:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23296), with CRLF line terminators
Size 419 kB (419334 bytes)
Hash a8028b2a07f97a01d148cb73e33e2a9e
1c0a17c9d8e78afb5a0d464f9a82ad1b781d152e
1ec649e693433c88bf44091da9e2443e5aaeb947225b37e39235a6d7d946edbe
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x= HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:26 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/fetch.js
69.162.186.127200 OK 9.8 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/fetch.js
IP 69.162.186.127:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (9743)
Hash 918555d12f4e30127d32ad0688b314fd
ed23529298f56121e23226bcdac53cdd597cde7e
3b84d92da91b81ba61b9ddd2628cebe507f673a75a1d6dc8679ec1eb1ed05dd4
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/fetch.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 9779
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/require-css.js
69.162.186.127200 OK 2.7 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/require-css.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (2656)
Hash d3ebc7292cd9c6d130348190d29cf34f
b759722e0e971cb9e7b0b50cd7b2af89fe113241
067e3bbbda237b2efa938536e6731e61f6e50d013473ad15b19ba7a15c5e6192
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/require-css.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 2698
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cc.go
69.162.186.127200 OK 30 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cc.go
IP 69.162.186.127:0
File type ASCII text, with very long lines (4761)
Hash 51e8d56141de0e4ce8e44e20a2bac789
adbc7edbf326bc4b6a9744c7ab953998b2763e57
e01a9eba151f341aac7538395f6ae4cc26d14b9eec7d1f5f1d137b7cbbe4f455
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cc.go HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 30015
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cau-login.js
69.162.186.127200 OK 3.7 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cau-login.js
IP 69.162.186.127:0
Hash 8dfe646a1039fbd1de8be886eb69a264
7647b6c4e0cfe526a0e987ae8c46f5281ca63a5b
3fada350cf2bc9de128abe0fa3863aadb07ce1c0aa9776b4ecee17aed9cf2c2d
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/cau-login.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:28 GMT
Accept-Ranges: bytes
Content-Length: 3655
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-checkbox.js
69.162.186.127200 OK 2.3 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-checkbox.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (2236)
Hash 49141c663013ab7d8d9865904ab0f492
cb4bef7c9a8dd731f7ff83bb585622d820c25b3f
9b2c16532e86b43800745f7502e1271df382b4c82edcc0ddba18481016d0ad27
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-checkbox.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 2283
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-cinema.js
69.162.186.127200 OK 13 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-cinema.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (12819)
Hash 40dcd60ba73f23d19da097dc96132db6
a2be28f49b4da496aeb1f1ada6eb1280b0be2974
c03093b16f2978157b424aa7f8f47481887306a1186eba46098fbbf6ce7ceceb
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-cinema.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 12864
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-code.js
69.162.186.127200 OK 1.2 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-code.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1137)
Hash 1ffe7800084a6524fa08f64382f64450
08a22f41924c9e186123b1bd0816f615100c3e79
c8eb29d7d8059bb204ec2c9904bcaadb33bec7fe996eb50bd205e7af77b4ad93
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-code.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1180
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tags.tiqcdn.com/dle/bofa/main/prod-_-bank%20of%20america%20-%20banking,%20credit%20cards,%20loans%20and%20merrill%20investing.js
23.38.200.249200 OK 3 B URL HTTP/1.1 tags.tiqcdn.com/dle/bofa/main/prod-_-bank%20of%20america%20-%20banking,%20credit%20cards,%20loans%20and%20merrill%20investing.js
IP 23.38.200.249:0
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
GET /dle/bofa/main/prod-_-bank%20of%20america%20-%20banking,%20credit%20cards,%20loans%20and%20merrill%20investing.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 200 OK
x-amz-id-2: aDisS0ONEu9YBdwDbaViLQtRp262Ohj2aEml9GRkx6XIjHm3U3R8OBMlbei/I9Cw+eJbZJgPqhQ=
x-amz-request-id: 60GCBF3VF406P4FG
Last-Modified: Thu, 02 Feb 2017 22:12:19 GMT
ETag: "b519d08ef66fd54910edbedba6181ec2"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 3
Cache-Control: max-age=300
Expires: Mon, 06 Feb 2023 20:29:28 GMT
Date: Mon, 06 Feb 2023 20:24:28 GMT
Connection: keep-alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-datepicker.js
69.162.186.127200 OK 3.3 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-datepicker.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (3202)
Hash 874f516cebc185c2ba1cbf7049434b10
f740b58f832525de1aa0171ce10081221c6f4d6d
673de146d27128359199a69e52a3432e05ba83902e9e591665aaf9de74c8f5ed
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-datepicker.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 3251
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-data.js
69.162.186.127200 OK 1.9 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-data.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1838)
Hash 405e60f02a85d5c35e733697600d8bc4
32a54167d60e86b70bd25d39e2a538b42b91f6da
33277b97fc999ae415ee9c611a0440723b1cfc00504e5f4db3bef4fc6f41edb3
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-data.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1881
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/a1e5f204.js
69.162.186.127200 OK 534 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/a1e5f204.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (65129)
Size 534 kB (533935 bytes)
Hash 493fa3e433300e615e9009369154f9f0
9002e62639b3e5f4908c62335f15593af79b6625
8b0a1f64373317b5ded9e39eae18fc16a59e6c950008b61a88cb5e648befb2cf
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/a1e5f204.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 533935
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/4d074495.css
69.162.186.127200 OK 596 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/4d074495.css
IP 69.162.186.127:0
File type ASCII text, with very long lines (62121), with CR, LF line terminators
Size 596 kB (595982 bytes)
Hash b42964359ef5c71c8cada7a9597d2ab0
75eb9d45e7275c3444732c1084b4c7c18b184da2
ace6e3115123be66e87e586daddbdbaa51d3b70cc77598e2225e802539e11e3c
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/4d074495.css HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 595982
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-layout-support.js
69.162.186.127200 OK 1.2 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-layout-support.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1165)
Hash ff694a5ef51f4eb1f5780eaec0da51a1
89b5f12cb5e4173507a92f75bd8347c28cd9dc4c
6cf527ce67154a629fa693d74ad053b2d4ac7ff29a7653b746f0b221e5e66039
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-layout-support.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1218
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-meta.js
69.162.186.127200 OK 5.4 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-meta.js
IP 69.162.186.127:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (5389)
Hash 109f90738e9ad7a463570e3bc7c4431d
e6adb067a9501f30d19cd5cd5ab7cf7070b278d3
23507d87e699b988c887c39a55d773161d8890ff13b69478c08ac6c3fe35f49d
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-meta.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 5446
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-select.js
69.162.186.127200 OK 2.5 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-select.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (2481)
Hash 677787afb7229ba63056da08939e6810
1d0fdfb2e7d28fc9f59f55203b6386a2bc5c7a66
f9eaf7508e1f9682ab8438edb88eaf08224d41c8416d86e8e614eb5d86f14901
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-select.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 2526
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-sparta.js
69.162.186.127200 OK 11 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-sparta.js
IP 69.162.186.127:0
File type HTML document, ASCII text, with very long lines (10678)
Hash 6207096c02091557099866bf1ff3f506
7665cd4e0c3bdbf2d0832543d124a15f772ed13c
3885d6840126f5de6497649a4854e394dea4d71b06f2fbf0d8d21c5c57c89f2a
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-sparta.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 10723
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-strings.js
69.162.186.127200 OK 3.6 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-strings.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (3508)
Hash 93c59e940bc4e785f9c2f0d4a1e4d74d
29ae4bbd374096da8e9be45f38765ba906968c8f
f7ef4364af9cd4568f8c063a6aa525f40455740831158d991d8e60598f9ce391
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-strings.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 3554
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-text-inputs.js
69.162.186.127200 OK 12 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-text-inputs.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (12374)
Hash de96bbb3d784e10f855271e6d7862469
f7d881e303fd0ef2f2319c33e2e8f65fea44648b
2345d8d831096ddb5903a1124ab169853cc637098388346a1094f4437c0b8209
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-text-inputs.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 12424
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3006f2a05442473df9250e1b70a0a24c
fa394c7afb1a1dca89d3b31ef48dfecd0d1b1892
dab350b4ff3d4d8cb408c780417df628d4652ed7829377e887a983babe19e00d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DAB350B4FF3D4D8CB408C780417DF628D4652ED7829377E887A983BABE19E00D"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3164
Expires: Mon, 06 Feb 2023 21:17:12 GMT
Date: Mon, 06 Feb 2023 20:24:28 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3006f2a05442473df9250e1b70a0a24c
fa394c7afb1a1dca89d3b31ef48dfecd0d1b1892
dab350b4ff3d4d8cb408c780417df628d4652ed7829377e887a983babe19e00d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DAB350B4FF3D4D8CB408C780417DF628D4652ED7829377E887A983BABE19E00D"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3164
Expires: Mon, 06 Feb 2023 21:17:12 GMT
Date: Mon, 06 Feb 2023 20:24:28 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3006f2a05442473df9250e1b70a0a24c
fa394c7afb1a1dca89d3b31ef48dfecd0d1b1892
dab350b4ff3d4d8cb408c780417df628d4652ed7829377e887a983babe19e00d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DAB350B4FF3D4D8CB408C780417DF628D4652ED7829377E887A983BABE19E00D"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3164
Expires: Mon, 06 Feb 2023 21:17:12 GMT
Date: Mon, 06 Feb 2023 20:24:28 GMT
Connection: keep-alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-textarea.js
69.162.186.127200 OK 1.7 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-textarea.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1683)
Hash 7be330343e1d53bfaaacfdf593ef921b
24fc38bc7abe9b2b0aaee322e1df65cf5776a0a3
88b676b74a434c83d690241400d507d339bbaa72ef47c95f2e6263b1a74beabe
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/helpers-textarea.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1730
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/prod-_-homepage-content-personal-homepage_personal.js
69.162.186.127200 OK 3 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/prod-_-homepage-content-personal-homepage_personal.js
IP 69.162.186.127:0
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/prod-_-homepage-content-personal-homepage_personal.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 3
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_03_Desktop-CSX962447f9.svg
192.229.233.231200 OK 2.9 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_03_Desktop-CSX962447f9.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1005)
Hash d8094e5ca096501fadc35f5dcbeec12a
b602fd040fab0041ed3f59663473336600d46dc9
25435dba2a0a17ceab8943bebc013c9d468f0312f05871e7fc5cf519535951ed
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_03_Desktop-CSX962447f9.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219178
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "1f92-5a7b081d73280"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Wed, 10 Jun 2020 01:10:18 GMT
server: ECS (ska/F6FC)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J0sxp43KpocntrO_mewAAAGI
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 2886
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_bb_3034668_1440-CSXe3b51fda.jpg
192.229.233.231200 OK 9.9 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_bb_3034668_1440-CSXe3b51fda.jpg
IP 192.229.233.231:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 1440x320, components 3\012- data
Hash 9a3f32b23546d232b1724d4a71409ca4
0bd9dd5dfdfa4c9aad7252215b7d8f6519377019
36d949908df2e6067788cfc71a6f8d26baf2ef9a93e6a91a8377cb26d2ea8f6b
GET /homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_bb_3034668_1440-CSXe3b51fda.jpg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 219178
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "2692-5a3eaf4c85e00"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 23 Apr 2020 01:13:28 GMT
server: ECS (ska/F717)
strict-transport-security: max-age=31536000
x-boa-requestid: Y94J0t_30ZTNOVuCA5tcpwAAAhs
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 9874
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_004.js
69.162.186.127200 OK 47 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_004.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (45570)
Hash 0e428b6e9b2f4b26cd33d09439005011
5ede4c2106c6cf8847852684067010e69ab99787
7bb81b5258b1b4515708260a793031d07b9468c96efaaf1c9d8027ad028b67ea
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_004.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 46783
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_04_Desktop-CSX1ef4c04c.jpg
192.229.233.231200 OK 40 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_04_Desktop-CSX1ef4c04c.jpg
IP 192.229.233.231:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 319x363, components 3\012- data
Hash 7aea29cfdd8a8f27417675d6c78ba7c4
aeafd38cddf6736784778bc6ab878e83521e7305
5bc4a4c7072119392ff343cdeaf86605dba8d8c92b38df3949b4d206513094cc
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_04_Desktop-CSX1ef4c04c.jpg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 219178
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "9de9-5a23041493540"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Wed, 01 Apr 2020 01:03:41 GMT
server: ECS (ska/F6FC)
strict-transport-security: max-age=31536000
x-boa-requestid: Y94J0i9LqjnKBNZ5PFkOFgAAAO4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 40425
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3006f2a05442473df9250e1b70a0a24c
fa394c7afb1a1dca89d3b31ef48dfecd0d1b1892
dab350b4ff3d4d8cb408c780417df628d4652ed7829377e887a983babe19e00d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DAB350B4FF3D4D8CB408C780417DF628D4652ED7829377E887A983BABE19E00D"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3164
Expires: Mon, 06 Feb 2023 21:17:12 GMT
Date: Mon, 06 Feb 2023 20:24:28 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3006f2a05442473df9250e1b70a0a24c
fa394c7afb1a1dca89d3b31ef48dfecd0d1b1892
dab350b4ff3d4d8cb408c780417df628d4652ed7829377e887a983babe19e00d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DAB350B4FF3D4D8CB408C780417DF628D4652ED7829377E887A983BABE19E00D"
Last-Modified: Mon, 06 Feb 2023 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3164
Expires: Mon, 06 Feb 2023 21:17:12 GMT
Date: Mon, 06 Feb 2023 20:24:28 GMT
Connection: keep-alive
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_phone_3034668_1440-CSX2b263b20.png
192.229.233.231200 OK 74 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_phone_3034668_1440-CSX2b263b20.png
IP 192.229.233.231:0
File type PNG image data, 278 x 313, 8-bit/color RGBA, non-interlaced\012- data
Hash 6892b652de658944b359062242e9729e
b0dd9cdd760b11a886d2d89df349c22d0b568a8a
00f678ce4578dd1af231a6ef5eb59b2255745e6fdf6f84400c006e9f42ba2104
GET /homepage/spa-assets/images/assets-images-site-homepage-news-mb_yni_phone_3034668_1440-CSX2b263b20.png HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 219178
cache-control: max-age=26920000, public
content-type: image/png
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "11f78-5a3eaf4c85e00"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 23 Apr 2020 01:13:28 GMT
server: ECS (ska/F71C)
strict-transport-security: max-age=31536000
x-boa-requestid: Y94J0qRYZEu64mNn1i2p_QAAAnU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 73592
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-global-logos-icon-ehl-white-CSX189e8f4c.svg
192.229.233.231200 OK 269 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-global-logos-icon-ehl-white-CSX189e8f4c.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (379)
Hash 7c059bbacabcb05bbbf7cccd875daec0
1fde03a8987b86f30051dae52096422f2b75daab
a713ba170f85c2a2acecf8e96a612f68136245f99650c79d72a02268a128f121
GET /homepage/spa-assets/images/assets-images-global-logos-icon-ehl-white-CSX189e8f4c.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 823625
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "17c-5aca3c4d1a3ba"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Wed, 12 Aug 2020 01:04:25 GMT
server: ECS (ska/F708)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9TQs8Bl13UgD9kIwVnA6gAAAD0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 269
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_01_Desktop-CSX72c6de66.jpg
192.229.233.231200 OK 43 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_01_Desktop-CSX72c6de66.jpg
IP 192.229.233.231:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 319x363, components 3\012- data
Hash cffd4c10bd7b1e0b3142c05f6c31fda3
c140680f81dc7ef6397f556160038ce715199acc
3c956ef5cd74b8c86cc83d980e04d4f4129a13d03aa7a3ddcd833f79e2fd5953
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_01_Desktop-CSX72c6de66.jpg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 219178
cache-control: max-age=26920000, public
content-type: image/jpeg
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "a7a8-5a7b081d73280"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Wed, 10 Jun 2020 01:10:18 GMT
server: ECS (ska/F71B)
strict-transport-security: max-age=31536000
x-boa-requestid: Y94J0n7pq7IllX6vwXeZuAAAAjg
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 42920
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_blue-CSXbd9e506c.svg
192.229.233.231200 OK 185 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_blue-CSXbd9e506c.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash 00cbd7ef8440cd32db7ff3325a20ad6c
825f2462276523ac45c7dd16566179866d27019d
aab71ea20022379418697a6e00a2349f8fe590bcaf12f7987112b0cb82fce28f
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_blue-CSXbd9e506c.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 644084
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "da-5589fa4d4b100"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 07 Sep 2017 20:52:52 GMT
server: ECS (ska/F715)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9eOCNyPwvH_FuUvAcbC5gAAAUo
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 185
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2
192.229.233.231200 OK 12 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2
IP 192.229.233.231:0
File type Web Open Font Format (Version 2), TrueType, length 11984, version 1.197\012- data
Hash 50d39f33c7179280df5acb6a5bb2716b
eb19d2940c727bb4e7f66e1e5c89ecff30725875
a431986817e5d309cdd61c623a5259d6ea5840375876ffb41f5a2cab65ddd2e3
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2 HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 513719
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "2ed0-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F71D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9mLRee9JeNR6v6cUSk-ugAAAng
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11984
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff2
192.229.233.231200 OK 12 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff2
IP 192.229.233.231:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.197\012- data
Hash 79e7bc718644146e98b5d55f19c8ed4a
9d0c5c674b242443a055a654e1ef0fa0e31642e2
d48faa13adcd567a29299db487912dd91fd45f777cadf153520f52023b58cee7
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff2 HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 219183
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "2e18-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F71D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y94JzdEzirIU-4_x6v0fHgAAAg4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11800
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2
192.229.233.231200 OK 12 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2
IP 192.229.233.231:0
File type Web Open Font Format (Version 2), TrueType, length 11608, version 1.197\012- data
Hash 46b5329e8e4e5925129ab2c36b336d0f
63cd5fbcbe5331e7d8059a4caee8d2510f834d68
79f02d139cfd07f2a19e0a8831553b3de4627fcab371e18eb776af035465949b
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2 HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 513723
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "2d58-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F6FC)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9mLQee9JeNR6v6cUSk-tAAAAnE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11608
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_02_Desktop-CSX440fed09.svg
192.229.233.231200 OK 2.6 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_02_Desktop-CSX440fed09.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (585)
Hash 0d662ea991a633b0db5077aac75869ae
2306dcf6bcb7fbfe519a6c4a77fd4388f24714e4
27189a28317debf07702ed7a72527b134d45cfe8ea701d7e7e99d72f5f84007f
GET /homepage/spa-assets/images/assets-images-site-homepage-bmh-module-default-00_Tile_02_Desktop-CSX440fed09.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219178
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "1a2d-5a7b081d73280"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Wed, 10 Jun 2020 01:10:18 GMT
server: ECS (ska/F704)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J0n7pq7IllX6vwXeZtwAAAjU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 2607
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_dark_blue-CSX476e4cfc.svg
192.229.233.231200 OK 184 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_dark_blue-CSX476e4cfc.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash c07724999f2a04c655ae43c93f136fbf
da3b1c260beaec5fdbf94207706d2eed5bf457ca
6ef2a9a69583c4ceabe33f9b3ba3b62ff1e1e5cccaa4f81d3ba286c2b82be770
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-arrow_right_dark_blue-CSX476e4cfc.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 93198
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "da-587c923c76680"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Wed, 01 May 2019 01:07:22 GMT
server: ECS (ska/F719)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9_17i9LqjnKBNZ5PFmblwAAANA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 184
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-colored-flagscape-v2-CSX4e4e3134.svg
192.229.233.231200 OK 960 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-colored-flagscape-v2-CSX4e4e3134.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash bc550d5944d9c114f8a003e84c64ba8b
55c75d483241176ec8d6094d182cc537a9a849ff
b5a575db3404f7b19cd65f43f2e0208dce21077f415a8c0bc9e95a8fb9033f70
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-colored-flagscape-v2-CSX4e4e3134.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 946928
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "83a-58422ddd48440"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Fri, 15 Mar 2019 14:29:29 GMT
server: ECS (ska/F71D)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9LvDBY6OP0i3BUMa37O5gAAAO4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 960
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff2
192.229.233.231200 OK 12 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff2
IP 192.229.233.231:0
File type Web Open Font Format (Version 2), TrueType, length 11628, version 1.197\012- data
Hash 01ed6e7ce19d38ecdeb6aefaa5b09de9
74e17e5c8d95b15f82b51066cd65790c6e991967
e7a245881b6946f6a5ce4bb8f6d47c7369274451a6b8cebf0d148834a1c87d5c
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff2 HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 513719
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "2d6c-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F713)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9mLRZgVuumwwHfRJ6AVeQAAASk
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11628
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_012.js
69.162.186.127200 OK 7.1 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_012.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1348)
Hash 2c87206871b7d51f63e1330c3fa85365
4be717e4345fe5d328ec99ae647356429d056ee5
8a0dfdfec6c60440916be301f735f32f704e9a4209e64d0148e0d8a76fc32a89
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_012.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 7063
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_002.js
69.162.186.127200 OK 41 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_002.js
IP 69.162.186.127:0
File type HTML document, ASCII text, with very long lines (26965)
Hash 128803ef13ebfa40e32b919995301fb4
59dab4244d088216e7bbcb9597e6b26a3a86036b
ecdde0a1975c42f750444db662d5ff33cfff9dc813ffd890174f8e03864ebaf7
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_002.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 41108
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff
IP 192.229.233.231:0
File type Web Open Font Format, TrueType, length 15992, version 1.0\012- data
Hash 128668a075c4f264d2e981b8b209b3d9
66e16397d123a07d1f9b3cc5fc816b0f86d0e4f5
66012a69bf24d036818928db1858817600cd028616d8adddc7f3de5936453fec
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 513716
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "3e78-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F711)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9mLSLL8MNrOFXiTbugJkgAAAdA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15992
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff
IP 192.229.233.231:0
File type Web Open Font Format, TrueType, length 15920, version 1.0\012- data
Hash e5c808f05ff56b6ad54c51b2f3dc308a
b0e61bf5f1eb0aa2ee19be3645edabd0d68cdc9f
d91d3ce91a4e63475ad24023d5697eb570499ff65bd342768b4b3077f7e517c1
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 219182
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "3e30-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F71D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y94JzmEg5EjCcIkyVo8mRwAAAko
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15920
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_010.js
69.162.186.127200 OK 10 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_010.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1048)
Hash 471b594f0ae667d8a98ac7a86308f27e
930a011f904285b412c03967a873d7108254a790
3bc88f9e042280ca316f405c242b635c70038d142ff2adb69b1c5178a470045e
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_010.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 9968
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff
IP 192.229.233.231:0
File type Web Open Font Format, TrueType, length 15648, version 1.0\012- data
Hash db12fee09df2fe82185361bef82283f7
9634aa7fe9c8a30bb8e6cfd8274841376e21d5bb
6b0a734c5d1f0eb6a65da6e72b8cb2b57f4df5f3fb24cd2fd39bd34aa8284478
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 513719
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "3d20-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F71A)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9mLRZgVuumwwHfRJ6AVegAAASg
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15648
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff
IP 192.229.233.231:0
File type Web Open Font Format, TrueType, length 15628, version 1.0\012- data
Hash 152697dadb46c460f40f62483efec85e
31242132505e2e3ddb1332cba2d4b6e43ae502b9
25a482fbd4ca15858546872c5fe572a99c58f447ddb0296b557dc37c7e33ddbe
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 513716
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "3d0c-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F71D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9mLSOe9JeNR6v6cUSk-vAAAAns
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15628
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_013.js
69.162.186.127200 OK 8.7 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_013.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1287)
Hash c5560ee7256d6b9666ecb8d0f7b3131d
0ff46f3c8573ed30f53b343795f50b2356600a63
4aa5f1e3b0abafdbf1cd879b5823a7ab1e911501b6acac472d3b03c28a634a64
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_013.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 8717
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
images-cdn.info/723/image.gif
54.86.140.52301 Moved Permanently 169 B URL HTTP/1.1 images-cdn.info/723/image.gif
IP 54.86.140.52:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 84855c13836b389d5ec7cfd4c9266173
1cf3056ff23c4176fd7ca9816a000ed461d6d323
502083c916ae481cdd413b8d93315300653df5fb3dcc5770c01991de19977eae
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /723/image.gif HTTP/1.1
Host: images-cdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Mon, 06 Feb 2023 20:24:28 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://images-cdn.info/723/image.gif
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf
IP 192.229.233.231:0
File type TrueType Font data, 17 tables, 1st "FFTM", 17 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 150378dcf7fda416b461bdf93d27720a
e5024f2fc8b091c7eb8d2eedae55bdc761e703ab
7181c5de10a1a490600afe7bc3ea0a64dce35f34a6568681692c183e7b8c6654
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 513714
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "7110-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F718)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9mLSsIV6Kl7uUM8WMssZwAAAB0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15833
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf
IP 192.229.233.231:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 1d946121f832012245ac3e6d5db32a20
618ad569442fdfb88dd3e7889995167ae57e305a
566ce6dcb452ef59f616479b89df958f60c208e8d8fcb9502fdd7b7b9d13a6b0
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 513716
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "70ac-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F709)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9mLSDK10_qfykZgI7lrdgAAAaY
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15479
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.ttf
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.ttf
IP 192.229.233.231:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 0dc02956bdbb283ad3e4458415cdcf68
b9764655cdd73c70b2059201e1cfcfa2e3096541
bd97fc4e8fd50f25e67e928b0a86a91e4d5db3c393b746d536fd0ea7687b9e5f
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.ttf HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219181
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "72c0-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F6FD)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J0GEg5EjCcIkyVo8mSAAAAkc
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15737
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.ttf
192.229.233.231200 OK 16 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.ttf
IP 192.229.233.231:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash b2cd45a6be0b14a601082d1aa6da8add
beac8dec4f96cdccffb078389c672d9c31f8c727
64c2a1715cde0f94edd36239a8b5817741003480ada25d5bbc792366a6baca85
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.ttf HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 513714
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "7144-5974515b0d000"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Thu, 14 Nov 2019 02:17:36 GMT
server: ECS (ska/F713)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9mLSj5047cIX-lU7ZjXugAAAW4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15470
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/bundles/9606dded.js
192.229.233.231200 OK 93 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/bundles/9606dded.js
IP 192.229.233.231:0
File type ASCII text, with very long lines (17909)
Hash d419463859ea996308f8aa3357667711
dad238fe40361a663a90d9cc485df6ffa15ef342
cb53cb0b110daaf1a5b5211a3c263e907ed342425a0ea8931a0dabfdf7022dd4
GET /homepage/spa-assets/bundles/9606dded.js HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219177
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "e9cb1-5b627eca23c7c"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Fri, 11 Dec 2020 03:31:13 GMT
server: ECS (ska/F706)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J0y9VZug-eLzT31JR-AAAAjA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 92895
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/bundles/a1e5f204.js
192.229.233.231200 OK 128 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/bundles/a1e5f204.js
IP 192.229.233.231:0
File type ASCII text, with very long lines (65129)
Size 128 kB (127502 bytes)
Hash c2e05ce8d94330b813e1585817954909
7752118fbae88677d5ca9c04b1556377128a94cc
76d413e258c1a9f6bdc0466f38effcdff1bb8a77630cf08024f7e88da354dec4
GET /homepage/spa-assets/bundles/a1e5f204.js HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219177
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "825af-5b48b2a1db334"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Fri, 20 Nov 2020 15:04:43 GMT
server: ECS (ska/F706)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J0xi3fR2pJPoyzQiyMAAAAP0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 127502
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/bundles/7a2392f5.js
192.229.233.231200 OK 207 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/bundles/7a2392f5.js
IP 192.229.233.231:0
File type ASCII text, with very long lines (58292)
Size 207 kB (207351 bytes)
Hash 67a3c310fdd7e5509c7cda313b1f966c
dbe66f70b8606a2d44ebd720168cd6b795a70454
fcf8484f4d063b27b97d3b986b2a502b76e3d032d9d2ab633ca70c5762a84cc1
GET /homepage/spa-assets/bundles/7a2392f5.js HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219176
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Mon, 06 Feb 2023 20:24:28 GMT
etag: "eb246-5b627ec33b738"
expires: Tue, 06 Feb 2024 20:24:28 GMT
last-modified: Fri, 11 Dec 2020 03:31:06 GMT
server: ECS (ska/F711)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J1F0I9prPBgabNTdVqAAAAbA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 207351
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_011.js
69.162.186.127200 OK 9.1 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_011.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1456)
Hash a545123331f06b0bb789f6fc4e206cc9
955307ef56023b9420f6da2b6dfc9f1e89bbf9af
daf244ac6d64970f17a0eb40adc56adad0b5312208e4bb36e9843ff6e3897021
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_011.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 9129
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_009.js
69.162.186.127200 OK 2.7 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_009.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1048)
Hash 97a7c3621e29e58c768c59cca9a9fac4
be3d6c716c26b69447ad4a58b3263444d3f08bd7
383b051c4d590471cfb993387c515e0d92d248618f4e865982773e4792800345
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_009.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 2687
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_007.js
69.162.186.127200 OK 4.1 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_007.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (1048)
Hash c6d9ff585cd8fc3e36bfebba61b12730
9396725ee343ab36c18f678eb4fb3b59ab60944b
b569068561f4585ea002b28318a2d288e14db5e1ed268ef52a31076427324243
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_007.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 4053
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2360
Expires: Mon, 06 Feb 2023 21:03:49 GMT
Date: Mon, 06 Feb 2023 20:24:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714723c38877e0d1655c7118a88ec064
809a42ce7c76cea0ce16af8172d852723c3a5f02
6bad7253694d155de31a8f5a3c635545a39aac340ca49d1bc10efb6739d4a356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8981
x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQHRFoAMFw6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ixAMZh_xOYWVESJ0jOEPOXZ4GQBDUZZsh26yEDYfl8APcBF2x2sZYg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 81266
etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe482817c-a09c-4952-a819-3ff2f99810ae.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe482817c-a09c-4952-a819-3ff2f99810ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 336b665bfad04ec8ed14b01bbf17566d
92102d4c75d2c7efd8197be88e3cb467d2682190
1e21687a242c058a3b442909b168c5e706175b1e93e51cfce691c6f033f795d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe482817c-a09c-4952-a819-3ff2f99810ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8039
x-amzn-requestid: b36a6062-0676-4abc-820c-959bc02810f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4pkoECwIAMF4hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e022ea-52faddc079b7107004e8cfea;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:43:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MOgI0aopvRaUSJ-YFH6QFNpGxhUNlpnLk7VeCeOsmcrGTUYIESN2Hg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:04:24 GMT
age: 80405
etag: "92102d4c75d2c7efd8197be88e3cb467d2682190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 81266
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 81260
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 062e186a259eda97173695240a492c63
9b476a4ec219667f560b88199a3a4e4b0a93b579
d18570d3c4ada689b5c2a99b0783ce41c629bd125e6683cf225e01b7032f14a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12256
x-amzn-requestid: 1b959eb9-cf69-414c-b57b-4a63277d709c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvgx-EhgoAMF2wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc7b3f-2c58e8ac2aee8a8f409a93a0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 03:10:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q5tAmSUsPHlKjkJSksZpvVrOAsduYKg0uuTlc03yvuhtO1BUKlHyuA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:54:29 GMT
age: 45000
etag: "9b476a4ec219667f560b88199a3a4e4b0a93b579"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad2298793399bf73c51c7d60952065c1
816bd4c36ceea2c46489ae72fde0b4a94c7c4bef
dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8649
x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHzboAMFQCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tNp3KhwtaSjchn-VAo1VellQ63I1W9uIbkQ_84Y7z_4z--vGfz8PGA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:53:56 GMT
age: 81033
etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_005.js
69.162.186.127200 OK 2 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_005.js
IP 69.162.186.127:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag_005.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 2
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
rail.bankofamerica.com/30306/hover.js?dt=login&r=0.17124011077930823
54.173.192.197403 Forbidden 146 B URL HTTP/1.1 rail.bankofamerica.com/30306/hover.js?dt=login&r=0.17124011077930823
IP 54.173.192.197:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9fe3cb2b7313dc79bb477bc8fde184a7
4d7b3cb41e90618358d0ee066c45c76227a13747
32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
GET /30306/hover.js?dt=login&r=0.17124011077930823 HTTP/1.1
Host: rail.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 403 Forbidden
Date: Mon, 06 Feb 2023 20:24:29 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
Server: haile
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash b6d9342529a124a0a13644f6d09e45ed
5800150f0f7d7eb19503c5081d37f6c51fc492e1
3dd60e216558ce3d846c41c74990eb097ee11b77d98bb5728138fb3e4f35e186
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 06 Feb 2023 20:24:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 05 Feb 2023 21:43:31 GMT
Expires: Mon, 06 Feb 2023 21:43:31 GMT
ETag: "5800150f0f7d7eb19503c5081d37f6c51fc492e1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/9606dded.js
69.162.186.127200 OK 958 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/9606dded.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (17909)
Size 958 kB (957617 bytes)
Hash b5b78232bfdd9a98db473915747e8962
08c99740cb062a0e2d2162651bf7f100da95684a
f26a7d80c591356ada0389b78e5f78b79bf37e0d6dcdb340cf5b69548e45f7a5
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/9606dded.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 957617
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-browser-support-utility/4.2.0/data/en/browser.json
192.229.233.231200 OK 9.4 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-browser-support-utility/4.2.0/data/en/browser.json
IP 192.229.233.231:0
File type JSON data\012- , ASCII text, with very long lines (12225)
Hash 890bdd659bedd0f7e1eb8540b3326b24
b59942c7fce7384af1f0dcae3cebf05b47abf468
dd57732a09bab24234c7c5c081d7e8aea50ffdb9f9f1f4860f471d10d14ca127
GET /homepage/spa-assets/components/utilities/global/sparta-browser-support-utility/4.2.0/data/en/browser.json HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219174
cache-control: max-age=604800, public
content-type: application/json
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "3830-5ac2421b8e2aa"
expires: Mon, 13 Feb 2023 20:24:29 GMT
last-modified: Wed, 05 Aug 2020 16:47:48 GMT
server: ECS (ska/F719)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J1wMFfOutOQRS6qrQIAAAAlE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 9402
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/vendor/fetch/2.0.3/js/fetch.js
192.229.233.231200 OK 2.9 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/vendor/fetch/2.0.3/js/fetch.js
IP 192.229.233.231:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (9743)
Hash ab15197c50cfdd0dec69cfc10c0d9f26
bad8866a12d6d1ecd1fe7218445091ce08be9417
da706961428c43067bfde1d4f20bbdf9d3835db860cf2e8b7b8c7d41dd7540bd
GET /homepage/spa-assets/components/utilities/vendor/fetch/2.0.3/js/fetch.js HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219174
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "2633-579b04fb4b080"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Fri, 02 Nov 2018 15:37:22 GMT
server: ECS (ska/F705)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J1wg7KSH5500DvN6ucgAAAO0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 2938
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/vendor/require-css/0.1.8/js/require-css.js
192.229.233.231200 OK 1.1 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/vendor/require-css/0.1.8/js/require-css.js
IP 192.229.233.231:0
File type ASCII text, with very long lines (2656)
Hash 4d64345bbfed60dff7f6caafc9842cb8
db94946d5436f0419ec53f350a5c7cd37812ffaf
30c694d5f62d18c241de25fff1ed801df9ebc8d6e9847ed65fc600a0f19b540f
GET /homepage/spa-assets/components/utilities/vendor/require-css/0.1.8/js/require-css.js HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219174
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "a8a-5589fa4d4b100"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Thu, 07 Sep 2017 20:52:52 GMT
server: ECS (ska/F70D)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J10JXAFFfkw0Ep5RrGAAAAK0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 1134
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_01_cash_Icon-CSXb578b8e.svg
69.162.186.127200 OK 1.2 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_01_cash_Icon-CSXb578b8e.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cf1abf4b6e93fecae19026d92d8e95f0
df1b076b4a22f6bcc30987a05f9bbf50c7ded24e
a83e521c2e5d422cc46f78d814cd01a975ea36b3e6318ba26089c533cf757ade
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_01_cash_Icon-CSXb578b8e.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1246
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/svg+xml
tags.tiqcdn.com/utag/bofa/main/prod/utag.js
23.38.200.249200 OK 70 kB URL HTTP/1.1 tags.tiqcdn.com/utag/bofa/main/prod/utag.js
IP 23.38.200.249:0
File type ASCII text, with very long lines (364)
Hash 6ecca511ca2638a807d0eb1b093ec59e
025af3a8ab9d097eb01b57f5393e7d435bb13d6b
351af340351e812bde9781130b4067da1b66031c80878e2722a9214c1d4354f4
GET /utag/bofa/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "06f278fcd83e39ddb6310d252454e496:1670628831.947296"
Last-Modified: Fri, 09 Dec 2022 23:33:51 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=300
Expires: Mon, 06 Feb 2023 20:29:29 GMT
Date: Mon, 06 Feb 2023 20:24:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_03_finance_Icon-CSXffab.svg
69.162.186.127200 OK 1.3 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_03_finance_Icon-CSXffab.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 422445366956387db9f751ef5c7730aa
3345aa4db12eb365bf9e88629c69245861e008b7
4618d4cd17f08a4e660c4bb9b96efcc71d33e47ec5ba037cc6ceed35940f8050
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_03_finance_Icon-CSXffab.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1250
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/7a2392f5.js
69.162.186.127200 OK 963 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/7a2392f5.js
IP 69.162.186.127:0
File type ASCII text, with very long lines (58292)
Size 963 kB (963142 bytes)
Hash 03ef777f8f38d3f385178825c5dfbcf3
15826de11d8dc3f130393df0d347f64459539026
2a3d7dfccb3c06068a134b994b1e3ca8ff72be74695c839a7393d947894b481f
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/7a2392f5.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:27 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 963142
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
images-cdn.info/723/image.gif
54.86.140.52200 OK 43 B URL HTTP/1.1 images-cdn.info/723/image.gif
IP 54.86.140.52:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /723/image.gif HTTP/1.1
Host: images-cdn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaxbuysell.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 06 Feb 2023 20:24:29 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_04_flagscape_Icon-CSX3d.svg
69.162.186.127200 OK 1.9 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_04_flagscape_Icon-CSX3d.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1a4d9ba22bcae6826df1b8b353b3c03c
9258b445307863c4bd9a3eb36790b18a6e03bd9e
9ec859a0cba834f3b2a646238834c9ead2d5617ea7cdc32c43deaf2b167a5826
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-00_04_flagscape_Icon-CSX3d.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1897
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/activityi.html
69.162.186.127200 OK 377 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/activityi.html
IP 69.162.186.127:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 45aabb5f04677b350ce8b3725aba2b40
89cb2e229e2d6ff9e1ec08216cc220e977477513
ffcf3a638e4a12c35e6cecbb80a19da2509ba6e1f5f66175022a36a758e13f44
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/activityi.html HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d; utag_main=v_id:0186286775600011c60b4571c01000050005700900918$_sn:1$_se:1$_ss:1$_st:1675716914336$ses_id:1675715114336%3Bexp-session$_pn:1%3Bexp-session
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:30 GMT
Accept-Ranges: bytes
Content-Length: 377
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html
tags.tiqcdn.com/utag/bofa/main/prod/utag.65.js?utv=ut4.46.202011211942
23.38.200.249200 OK 13 kB URL HTTP/1.1 tags.tiqcdn.com/utag/bofa/main/prod/utag.65.js?utv=ut4.46.202011211942
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash e60374467fb5f28bfd6e70e5b5481dc7
20a746971b64433cc370f378a5040e7b1f2293d4
98caf4e94955601f74de12720215954745e3c0c56b73f7411a31bd8e5b2526d1
GET /utag/bofa/main/prod/utag.65.js?utv=ut4.46.202011211942 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "c278398091a58d113f4267dd822c6de4:1670628828.189766"
Last-Modified: Fri, 09 Dec 2022 23:33:48 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Tue, 21 Feb 2023 20:24:29 GMT
Date: Mon, 06 Feb 2023 20:24:29 GMT
Content-Length: 12737
Connection: keep-alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg
69.162.186.127200 OK 3.5 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8501eddc227a8cd862db80fab40d73a6
ccc48cb6808011e2ed77a18e2646cf6e573a36d1
7e6ce497138ce47d8ab66d70c46d245e1261d7f2d3f1db3556eec0ca1c82e2ec
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 3472
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-calendar-CSXef62d939.svg
69.162.186.127200 OK 1.2 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-calendar-CSXef62d939.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1191), with no line terminators
Hash e43b829f9978a200921730c6af362a0b
d8f9f37123a55f5be33b6709474b5d02c42f8ee4
79266c36aad7737b74bb1a73c53b99e51c2cda5f7e5ac1e9c5f6178e5181159d
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-calendar-CSXef62d939.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 1191
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-offers-ME_Batch1_Gen_L1_Tile_2.webp
69.162.186.127200 OK 728 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-offers-ME_Batch1_Gen_L1_Tile_2.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 243x105, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash df9f3bf8aa5865301323a569fe62fbe7
93bb04e936f1a56defb6e7bc88e08d24815f5f39
5314ce08621ae1844b4ef0c672d68effcb3ade4009909fdf835c97166fda7500
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-offers-ME_Batch1_Gen_L1_Tile_2.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 728
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/webp
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-logos-new_merrill_desktop_logo-C.svg
69.162.186.127200 OK 5.8 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-logos-new_merrill_desktop_logo-C.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2727)
Hash d3cc6af9faa7069724de8030ffd29173
8d3d23de9b40ee0e7d12e3f32158a9d4ccb07b95
2d9705dc449a9757f9b36ace6d7479eabcf2a90b210b400d49f7f8e7e4837d2e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-logos-new_merrill_desktop_logo-C.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 5791
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-.webp
69.162.186.127200 OK 8.9 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b58a5afcf76083801ff39e1c1906858c
2b64c63057c2f82554f19a935c40afc89f904110
fc38e939473af69e530fd050e721be4d0989344c692cd7f06bd714ba390521af
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 8880
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/webp
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-validation-framework/7.1.0/data/en/messages.json
192.229.233.231200 OK 1.1 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-validation-framework/7.1.0/data/en/messages.json
IP 192.229.233.231:0
File type JSON data\012- , ASCII text
Hash 10c017bbc8acf897af4c76c4ffb48ba1
885fd8c3baebf376f43f15123b6e0896338c2bc0
f06115f61da58b6aa5ba4c0b3fc743f40863262b246e42fbf080188297e487b6
GET /homepage/spa-assets/components/utilities/global/sparta-validation-framework/7.1.0/data/en/messages.json HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219166
cache-control: max-age=604800, public
content-type: application/json
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "107d-5ac2421bdbcd7"
expires: Mon, 13 Feb 2023 20:24:29 GMT
last-modified: Wed, 05 Aug 2020 16:47:48 GMT
server: ECS (ska/F71E)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J337pq7IllX6vwXeZxwAAAkk
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 1134
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-input-utility/12.1.1/data/en/inputs.json
192.229.233.231200 OK 89 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-input-utility/12.1.1/data/en/inputs.json
IP 192.229.233.231:0
File type JSON data\012- , ASCII text
Hash cd868147bdf996b981ac4cb59d7a395b
6ad4ce91f5f3d90dd68a5173577a6ee53e240977
bc937035e3786847d99666fb4b15dbce84087df72c9441cc502f223e300f04eb
GET /homepage/spa-assets/components/utilities/global/sparta-input-utility/12.1.1/data/en/inputs.json HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 513716
cache-control: max-age=604800, public
content-type: application/json
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "69-59029556fc340"
expires: Mon, 13 Feb 2023 20:24:29 GMT
last-modified: Thu, 15 Aug 2019 15:14:45 GMT
server: ECS (ska/F719)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9mLSZgVuumwwHfRJ6AVfgAAAS0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 89
X-Firefox-Spdy: h2
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_002.webp
69.162.186.127200 OK 9.2 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_002.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8fd0299df135fcfb739762e4fc10a713
15144591cfad1624e3c4a397b5515d65d31835f7
34c4f8e0d69b52d460cff452ee8c8c9bba2a9a4038d132ce8323860becb2c743
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_002.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 9162
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/webp
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_003.webp
69.162.186.127200 OK 9.6 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_003.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 824f90d4b506503136e0a089056d88fa
2dc283ecadcec631119658ad6c7b42ee1753737d
2994972f7ab41d4b658d96fb6e5a3b5634de9ee0f640e2b061d07e8e9b17e6b1
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_003.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 9636
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/webp
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_004.webp
69.162.186.127200 OK 13 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_004.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 79e2acc9bf4b26632c4ad7ef0839eb79
a8e994e8a91bb028b07b2851518d1e20ce78aadb
11c5fd3d9e308d99192f6327199dd4e602817515c7cd25eaa8c52e4d6ae120e4
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-mastheads-consumer-cards-e_004.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 12754
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/webp
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-super-highlights-consumer-depo.webp
69.162.186.127200 OK 2.5 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-super-highlights-consumer-depo.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 722x352, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fe30518ca381fa69de79a77d25675830
b8148756b3c34c3f0273db9db948b3b56a7420a4
cfbe1a2eba26e1c236862c710e0a5c82181d2f7b89b4e3ebf9db80f27b9ca68e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-super-highlights-consumer-depo.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 2484
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/webp
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-mobile-bank.svg
69.162.186.127200 OK 2.7 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-mobile-bank.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (668)
Hash 75a17f35a4ba7dfe5a66cca04f4953fe
664f71deedec8a4a41ffdae622a78ef149428a5a
c21b0733d69c18e14b4023b3567074271a478d799bc07f13ab60f279cbd80e00
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-mobile-bank.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 2745
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-super-highlights-consumer-ente.webp
69.162.186.127200 OK 15 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-super-highlights-consumer-ente.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 722x352, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 475bddc7ae51448fa41d410d33892b08
d33e0e60d47939431439395fa315efabcd4bf3a7
032159372b1470f656c5b2c4342c6760d89b3828a21ef57799b4b3c8ef8e2374
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-super-highlights-consumer-ente.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 14664
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/webp
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-deposits-en.svg
69.162.186.127200 OK 465 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-deposits-en.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 39f21628073541d6f86142f7c1225a9e
5e89930251e98d4f13e3796d744789aba2737d8c
e905a4d6774d5e4127d10e980d86be4c86462939927de774d7dd1fc85c7fd3ea
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-deposits-en.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 465
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-bamd-en-hl_.svg
69.162.186.127200 OK 793 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-bamd-en-hl_.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (398)
Hash 2af6752c2a61c53b349d255951b713d7
b2405dcdf4c99ea424dbc666686cd0682a6114f5
a7a11e74f87a00b3ee8313de3124d565230c01c141f7d8527cd00be52e80e985
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-bamd-en-hl_.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 793
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-merrill-en-.svg
69.162.186.127200 OK 14 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-merrill-en-.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (7267)
Hash 42fc15041dc237e91c6971e863c7f241
0737f3ced75d647a489447c871b43b6034cb9964
637f24f45d4640101ad59c9467921a9451dfeb40670e8a2526424ba8f2033a3e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-hp-assets-highlights-consumer-merrill-en-.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 13929
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-news-life-services-life-service.webp
69.162.186.127200 OK 9.8 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-news-life-services-life-service.webp
IP 69.162.186.127:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x552, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ade43a06c27f9d8a7b916fb9fc37348b
08acb8cbe0191293b1727d0b25d24d683355ca30
50e6b5d745d427304aca0397a7667ee1194621bd40a6e51d76afaa0deee37689
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-news-life-services-life-service.webp HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 9844
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/webp
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-get_app_interstitial_icon-.svg
69.162.186.127200 OK 37 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-get_app_interstitial_icon-.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 1c7530637540557e2a818d755bb4b7ad
3121c1c647b9bb50960e4ca0e6f39835a5bc0fb6
ddc2154c0d608206ff9c64e5acb6e38a3f153e8a9939d846763ddf701424456d
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-get_app_interstitial_icon-.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 37062
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-get_app_interstitial_lock-.svg
69.162.186.127200 OK 587 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-get_app_interstitial_lock-.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (587), with no line terminators
Hash a7f2c7550ccc79e1d25dbfe6c756d2c1
3309818c64af0c7d39f36974049b0a48441565e8
46344c37451bf1505050f5ca9096e1d16686172250401bb04558f13eb5bb04f8
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-icons-get_app_interstitial_lock-.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 587
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-get-app-modal-Download_on_the_App_Store.svg
69.162.186.127200 OK 7.3 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-get-app-modal-Download_on_the_App_Store.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7318), with no line terminators
Hash 40db11c8ecf6a87ed4c2e1c22c80c44f
0aa261a4b0254f8374e11a34077067e6148505f2
3f1ea5c409c0d00088df9790fa7698929b4b8d242ec4372ab83fa8c3b969c692
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-get-app-modal-Download_on_the_App_Store.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 7318
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-get-app-modal-google-play-badge-CSX89f9.svg
69.162.186.127200 OK 5.0 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-get-app-modal-google-play-badge-CSX89f9.svg
IP 69.162.186.127:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4993), with no line terminators
Hash d44334d84df12f4539734b402b40cc34
c46223399876b228fb4d6b57b8b7c63566bf2b31
1fb7690d7f2b1b600dbea5fbfce96198cae49ad0009fee412d96bc462a27eea9
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-global-get-app-modal-google-play-badge-CSX89f9.svg HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 4993
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/svg+xml
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-sign-in-module-hp-url-example-CS.png
69.162.186.127200 OK 4.1 kB URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-sign-in-module-hp-url-example-CS.png
IP 69.162.186.127:0
File type PNG image data, 522 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 8e1041b5b2d8242c565725caf3adc033
96d3d32bc0b0f07acd69046e655ceeb05c5444ea
6d7ac293ab6a5f1f5bddc8d4e59602950fbfa5434d1b50e1a840eab9dd6b4b7c
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/assets-images-site-homepage-sign-in-module-hp-url-example-CS.png HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:29 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 4102
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png
www2.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png
192.229.233.231200 OK 8.4 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png
IP 192.229.233.231:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 67af3bbd46f9947739538d49395d573d
03a34b0aa432274f88862b27ab109f8e26311e72
b47bfe9d7333188f5b2f8690785ccd966d882c2364a5e4e5ae293e02554ad8d8
GET /homepage/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 301434
cache-control: max-age=26920000, public
content-type: image/png
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "20a2-58422ddd48440"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Fri, 15 Mar 2019 14:29:29 GMT
server: ECS (ska/F717)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9zIg9_30ZTNOVuCA5tjBQAAAkw
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 8354
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png
192.229.233.231200 OK 15 kB URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png
IP 192.229.233.231:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash cb64c30b1249dbac9691a3a2cc418631
2c36d5247a84049dea63ced5ad35666d6589413e
9a092ddd265dc1651c83cdbd0e7d5d523dc51c3cacfc9b4ec98a6ddb58ee364e
GET /homepage/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 240722
cache-control: max-age=26920000, public
content-type: image/png
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "39d3-58422ddd48440"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Fri, 15 Mar 2019 14:29:29 GMT
server: ECS (ska/F70F)
strict-transport-security: max-age=31536000
x-boa-requestid: Y921q_rOBkpWkaEY3SrQ_QAAAjo
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 14803
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_01_cash_Icon-CSXb578b8ef.svg
192.229.233.231200 OK 726 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_01_cash_Icon-CSXb578b8ef.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ef507ef60a45c63b47e138875b36064c
2145b0b2de2ec69ab67211bdc0e9141beeffe3d1
85f996ff7afcc8649cf177a1665db48b4cc80b02c6e57ef122a29ba89ccf3057
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-00_01_cash_Icon-CSXb578b8ef.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219173
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "4de-5a23041493540"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Wed, 01 Apr 2020 01:03:41 GMT
server: ECS (ska/F719)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J2L1hS75OAxSXq4dSDwAAAbU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 726
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_03_finance_Icon-CSXffabbfd2.svg
192.229.233.231200 OK 742 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_03_finance_Icon-CSXffabbfd2.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d8a30a8e8c2ef860fd5af4e7626e8512
c477661283dd06ece80a1e043554c443ea5f0a6a
744b7b0c8e38f406932082a3e4dfd54970c4eb52792afaf3145a17162eb696c7
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-00_03_finance_Icon-CSXffabbfd2.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219172
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "4e2-5a23041493540"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Wed, 01 Apr 2020 01:03:41 GMT
server: ECS (ska/F71C)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J2aiBYSJptwL_f32jwQAAAlk
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 742
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_02_calc_Icon-CSX53dfe2a6.svg
192.229.233.231200 OK 606 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_02_calc_Icon-CSX53dfe2a6.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f486957ab4378339ec7dba38e387677a
d9ddef71b04cd67fa6a6a31c5e579793bf3187de
f31e478448b2e1f553739f364b01b4c91ac22ad75d720948b5f3e527cf288358
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-00_02_calc_Icon-CSX53dfe2a6.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219172
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "411-5a23041493540"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Wed, 01 Apr 2020 01:03:41 GMT
server: ECS (ska/F717)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J2S9VZug-eLzT31JSAAAAAjg
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 606
X-Firefox-Spdy: h2
www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_04_flagscape_Icon-CSX3dc6a14c.svg
192.229.233.231200 OK 940 B URL HTTP/2 www2.bac-assets.com/homepage/spa-assets/images/assets-images-site-homepage-icons-00_04_flagscape_Icon-CSX3dc6a14c.svg
IP 192.229.233.231:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bcaf8fb00a688d57c3b1ba4fd8fb38e0
798035843da9726040b6a5f22b01d9545a7eabd4
f3d4983a45adc2a23dd2046ef52da2f965daea127ea18fdee6c92ce062c8c433
GET /homepage/spa-assets/images/assets-images-site-homepage-icons-00_04_flagscape_Icon-CSX3dc6a14c.svg HTTP/1.1
Host: www2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 219171
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Mon, 06 Feb 2023 20:24:29 GMT
etag: "769-5a23041493540"
expires: Tue, 06 Feb 2024 20:24:29 GMT
last-modified: Wed, 01 Apr 2020 01:03:41 GMT
server: ECS (ska/F70B)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y94J2tEzirIU-4_x6v0fJgAAAhY
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 940
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=bofa/main/202012031736&cb=1675715116388
23.38.200.249200 OK 2 B URL HTTP/1.1 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=bofa/main/202012031736&cb=1675715116388
IP 23.38.200.249:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=bofa/main/202012031736&cb=1675715116388 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
Last-Modified: Thu, 14 Apr 2016 16:57:51 GMT
Server: AkamaiNetStorage
Content-Length: 2
Cache-Control: max-age=600
Expires: Mon, 06 Feb 2023 20:34:29 GMT
Date: Mon, 06 Feb 2023 20:24:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 56e11c978bcfa2c239f9be3bc040a827
237bc8b21c19df1c5fe76c6691f96a9f46a7c0ee
787156908a29d8fbc2443ef7ab9de1982159107338d817cf8648db94d9dac439
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2884
Cache-Control: max-age=124229
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 20:24:30 GMT
Etag: "63e098ff-1d7"
Expires: Wed, 08 Feb 2023 06:54:59 GMT
Last-Modified: Mon, 06 Feb 2023 06:06:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 56e11c978bcfa2c239f9be3bc040a827
237bc8b21c19df1c5fe76c6691f96a9f46a7c0ee
787156908a29d8fbc2443ef7ab9de1982159107338d817cf8648db94d9dac439
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2884
Cache-Control: max-age=124229
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 20:24:30 GMT
Etag: "63e098ff-1d7"
Expires: Wed, 08 Feb 2023 06:54:59 GMT
Last-Modified: Mon, 06 Feb 2023 06:06:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
54.72.53.159200 OK 104 B URL HTTP/1.1 dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
IP 54.72.53.159:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90a8ce4aa172e4b63430c93639257805
d30e7b2034df83180b28f024556a5534dce531c3
093ac6be731cba244fff837ea4fa57ab36e1fde5a5a53d9b36a467184eae87f5
GET /id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://jaxbuysell.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0449b668e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 198
X-TID: Vv6i50cpRio=
Content-Length: 104
Connection: keep-alive
dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
54.72.53.159200 OK 104 B URL HTTP/1.1 dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
IP 54.72.53.159:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90a8ce4aa172e4b63430c93639257805
d30e7b2034df83180b28f024556a5534dce531c3
093ac6be731cba244fff837ea4fa57ab36e1fde5a5a53d9b36a467184eae87f5
GET /id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://jaxbuysell.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-03c381005.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 198
X-TID: hEFK4a+yT/o=
Content-Length: 104
Connection: keep-alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/activityi_data/src1359940.html
69.162.186.127200 OK 265 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/activityi_data/src1359940.html
IP 69.162.186.127:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 95ab2e7b6144c47f3c7ea8e9dd4a57b2
25337ff1e1b2edfb4e03dd7395dc5319981b63f1
8fd5512f3baa4af65b7a45a938a11a4517e64a5776a7494151df1d0e69080747
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/activityi_data/src1359940.html HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/activityi.html
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d; utag_main=v_id:0186286775600011c60b4571c01000050005700900918$_sn:1$_se:1$_ss:1$_st:1675716914336$ses_id:1675715114336%3Bexp-session$_pn:1%3Bexp-session; _cc=YWY3OWY4MzYtMDY0OS00Njc5; usy46gabsosd=celebrus_16757151164080.0094c3b810932a1d0fd87b731e6e29ea_1478
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:30 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:30 GMT
Accept-Ranges: bytes
Content-Length: 265
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html
sofa.bankofamerica.com/cookie-id.js?fn=saveCMCookieToDDO
54.144.151.173200 OK 65 B URL HTTP/1.1 sofa.bankofamerica.com/cookie-id.js?fn=saveCMCookieToDDO
IP 54.144.151.173:0
File type ASCII text, with no line terminators
Hash d2673e00a77d014384b757ea9778795a
e969e2f948253544a72f74de9e0cab193415594a
51f380e4abbdf4b680c54f673835d4dd976e5355955a71f3b12191dbff588a82
GET /cookie-id.js?fn=saveCMCookieToDDO HTTP/1.1
Host: sofa.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:30 GMT
Server: Apache
Vary: Host
Content-Length: 65
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Connection: close
Content-Type: application/x-javascript
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 41ed69434ba74db4a231af3555b0f56f
1a2ef476ea8a8d5768f14ce1533616d1b23ec6c4
fede07c9c3d27e9514920b1c84808eca2d453b53add697f5b11d4607dfa975f7
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "FEDE07C9C3D27E9514920B1C84808ECA2D453B53ADD697F5B11D4607DFA975F7"
Last-Modified: Mon, 06 Feb 2023 19:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3275
Expires: Mon, 06 Feb 2023 21:19:05 GMT
Date: Mon, 06 Feb 2023 20:24:30 GMT
Connection: keep-alive
tilt.bankofamerica.com/1478/handler9/session.json
171.161.100.28301 Moved Permanently 0 B URL HTTP/1.0 tilt.bankofamerica.com/1478/handler9/session.json
IP 171.161.100.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /1478/handler9/session.json HTTP/1.1
Host: tilt.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 846
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.0 301 Moved Permanently
Location: https://tilt.bankofamerica.com/1478/handler9/session.json
Connection: Keep-Alive
Content-Length: 0
testdata.coremetrics.com/cm?ci=60010394&st=1675715115342&vn1=4.2.7.1BOA&ec=UTF-8&ul=http%3A//jaxbuysell.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=EBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta&tid=9&cm_sp=EBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta&tid=9&cm_sp=MobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4
3.86.136.12302 Found 0 B URL HTTP/1.1 testdata.coremetrics.com/cm?ci=60010394&st=1675715115342&vn1=4.2.7.1BOA&ec=UTF-8&ul=http%3A//jaxbuysell.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=EBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta&tid=9&cm_sp=EBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta&tid=9&cm_sp=MobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4
IP 3.86.136.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ci=60010394&st=1675715115342&vn1=4.2.7.1BOA&ec=UTF-8&ul=http%3A//jaxbuysell.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=EBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta&tid=9&cm_sp=EBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta&tid=9&cm_sp=MobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4 HTTP/1.1
Host: testdata.coremetrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 302 Found
Date: Mon, 06 Feb 2023 20:24:30 GMT
Server: Apache
Vary: Host
Set-Cookie: CoreID6=83121675715070098760753; path=/; expires=Fri, 05 Feb 2038 20:24:30 GMT
TestSess3=83121675715070098760753;path=/
Location: /cm?ci=60010394&st=1675715115342&vn1=4.2.7.1BOA&ec=UTF-8&ul=http%3A//jaxbuysell.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=EBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta&tid=9&cm_sp=EBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta&tid=9&cm_sp=MobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4&cvdone=p
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Content-Length: 0
Connection: close
secure.bankofamerica.com/pa/components/utilities/ah-continuous-auth-util/1.1/deploy/cau-login.js
171.161.116.200200 OK 4.7 kB URL HTTP/1.1 secure.bankofamerica.com/pa/components/utilities/ah-continuous-auth-util/1.1/deploy/cau-login.js
IP 171.161.116.200:0
Hash 292fae7b3788cc61b05b9a4b42984311
163652e4c9419ad7ce2bf86892b2674662ba7555
c4d48b4387e3a84eff68f1e0470df9c1b9bd2150a973ac8a441933717b0c177d
GET /pa/components/utilities/ah-continuous-auth-util/1.1/deploy/cau-login.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 09:01:17 GMT
ETag: "1283-5e657fdc8d55e"
Accept-Ranges: bytes
X-BOA-RequestID: Y90Rk62ZEDsayGHsh56tewAAAGE
Keep-Alive: timeout=40, max=379
Content-Type: application/x-javascript
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.com cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: z85k6QQPVWHU+3ALwGaskw==--6Xupa1qjGByQKFbP1ZzNPw==
Connection: Keep-Alive
Date: Mon, 06 Feb 2023 20:24:30 GMT
Age: 586
Content-Length: 4739
rail.bankofamerica.com/30306/hover.js?dt=login&r=0.20534941259037243
54.173.192.197403 Forbidden 146 B URL HTTP/1.1 rail.bankofamerica.com/30306/hover.js?dt=login&r=0.20534941259037243
IP 54.173.192.197:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9fe3cb2b7313dc79bb477bc8fde184a7
4d7b3cb41e90618358d0ee066c45c76227a13747
32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
GET /30306/hover.js?dt=login&r=0.20534941259037243 HTTP/1.1
Host: rail.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/
HTTP/1.1 403 Forbidden
Date: Mon, 06 Feb 2023 20:24:30 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
Server: haile
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
secure.bankofamerica.com/login/sign-in/entry/cc.go
171.161.116.200200 OK 30 kB URL HTTP/1.1 secure.bankofamerica.com/login/sign-in/entry/cc.go
IP 171.161.116.200:0
File type ASCII text, with very long lines (4761)
Hash f67a8da70276d44ab7dfc37c66f32e86
36af7ef2fbd20b3fca805d77504bfafc27d48f1b
17d4da1185540aec7e1b7fa32ad872ce9a605ef2785dd1438f26bc706d2c628c
GET /login/sign-in/entry/cc.go HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:30 GMT
P3P: CP="CAO IND PHY ONL UNI FIN COM NAV INT DEM CNT STA POL HEA PRE GOV CUR ADM DEV TAI PSA PSD IVAi IVDi CONo TELo OUR SAMi OTRi"
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache
Content-Disposition: inline
Content-Length: 30015
Set-Cookie: JS_VIPAA=0000bgT3VKe2YdhQu_ZzTt9gfaR:1e2lt0mc4; Path=/; Secure; HttpOnly
ccts=d0Sbkr4ULL/jMiHqigky52KqKNBdlegeFGPmG6bvbHeQkljyPcYzX/53RsUw0XGqZQmFaT2FqvIKg5rUTA2HqA==; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
SPID=C1S2;Path=/;Domain=.bankofamerica.com;samesite=None;Secure
SID=0007EE4A9C0063E161FE;Path=/;Domain=.bankofamerica.com;samesite=None;Secure
TS01d7083a=01c9d1a3a013f94e166cd87f948738673676d98697a9be91d39e034df4273ad1509bc60cc01f0650c1f5881c7ddbe57008507313802eb0c4c177f53ff45f4ed098d7b4f155; Path=/; Secure; HTTPOnly
TS01ab8143=01c9d1a3a02857eb96d51fe7964f140f5175271754a9be91d39e034df4273ad1509bc60cc066f8efc0dfbdfcd0d0bbfc18411f022d2a5962388c467f00ffb942d8bead64ac8c23ec547426f5ab8db89b2245d3ee7c5d133f7e04090b4ee78710588cc3fffd; path=/; domain=.bankofamerica.com; HTTPonly; Secure
X-BOA-RequestID: Y-Fh_jW-uVlYzaT_w-9I-QAAADM
Keep-Alive: timeout=40, max=274
Connection: Keep-Alive
Content-Type: text/text
Content-Language: en-US
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.com cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: fs56UlvaSRWUcRZ/EMlZxQ==--+z58B0atc09RsiEqEpJ4KQ==
testdata.coremetrics.com/cm?ci=60010394&st=1675715115342&vn1=4.2.7.1BOA&ec=UTF-8&ul=http%3A//jaxbuysell.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=EBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta&tid=9&cm_sp=EBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta&tid=9&cm_sp=MobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4&cvdone=p
3.86.136.12200 OK 43 B URL HTTP/1.1 testdata.coremetrics.com/cm?ci=60010394&st=1675715115342&vn1=4.2.7.1BOA&ec=UTF-8&ul=http%3A//jaxbuysell.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=EBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta&tid=9&cm_sp=EBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta&tid=9&cm_sp=MobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4&cvdone=p
IP 3.86.136.12:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /cm?ci=60010394&st=1675715115342&vn1=4.2.7.1BOA&ec=UTF-8&ul=http%3A//jaxbuysell.com&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=Cons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink&tid=9&cm_sp=EBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta&tid=9&cm_sp=DEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta&tid=9&cm_sp=EBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta&tid=9&cm_sp=MobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta&tid=9&cm_sp=DEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL&tid=9&cm_sp=OLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta&tid=9&cm_sp=GWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3&tid=9&cm_sp=EBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4&cvdone=p HTTP/1.1
Host: testdata.coremetrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jaxbuysell.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:31 GMT
Server: Apache
Vary: Host
Expires: Sun, 05 Feb 2023 20:24:31 GMT
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, no-transform, pre-check=0, post-check=0, private
Pragma: no-cache
Content-Length: 43
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Connection: close
Content-Type: image/gif
bofa.demdex.net/event?d_dst=1&d_rtbd=json&c_sitePromotionUrls=https%3A%2F%2Fwww.merrilledge.com%2Farticle%2Fhow-much-do-you-really-need-to-save-for-retirement%3Fcm_sp%3DGWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fabout.bankofamerica.com%2Fpromo%2Fassistance%2Flatest-updates-from-bank-of-america-coronavirus%2F%3Fcm_sp%3DEBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fadvantage_banking%2F%3Fcm_sp%3DDEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta%2Chttps%3A%2F%2Fabout.bankofamerica.com%2Fen-us%2Fpartnering-locally%2Four-commitment-to-local-communities.html%3Fcm_sp%3DEBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fzelle%2F%3Fcm_sp%3DMobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fadvantage_banking%2F%3Fcm_sp%3DDEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL%2Chttps%3A%2F%2Fwww.bankofamerica.com%2Fdeeplink%2Fredirect.go%3Ftarget%3Ddeals_expiry%26screen%3DDeals%3AEntry%26SortedBy%3DExpiringSoon%26version%3D7.1.0%26cm_sp%3DOLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta%2Chttps%3A%2F%2Fwww.merrill.com%2F%3Fcm_sp%3DGWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fcoronavirus-financial-tips%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fsaving-budgeting%2Fprotecting-your-finances-during-coronavirus%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fsaving-budgeting%2Fwhat-zero-percent-interest-means%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fpersonal-banking%2Fwhat-is-a-digital-wallet%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4&d_jsonv=1
34.251.149.144414 Request-URI Too Long 0 B URL HTTP/1.1 bofa.demdex.net/event?d_dst=1&d_rtbd=json&c_sitePromotionUrls=https%3A%2F%2Fwww.merrilledge.com%2Farticle%2Fhow-much-do-you-really-need-to-save-for-retirement%3Fcm_sp%3DGWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fabout.bankofamerica.com%2Fpromo%2Fassistance%2Flatest-updates-from-bank-of-america-coronavirus%2F%3Fcm_sp%3DEBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fadvantage_banking%2F%3Fcm_sp%3DDEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta%2Chttps%3A%2F%2Fabout.bankofamerica.com%2Fen-us%2Fpartnering-locally%2Four-commitment-to-local-communities.html%3Fcm_sp%3DEBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fzelle%2F%3Fcm_sp%3DMobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fadvantage_banking%2F%3Fcm_sp%3DDEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL%2Chttps%3A%2F%2Fwww.bankofamerica.com%2Fdeeplink%2Fredirect.go%3Ftarget%3Ddeals_expiry%26screen%3DDeals%3AEntry%26SortedBy%3DExpiringSoon%26version%3D7.1.0%26cm_sp%3DOLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta%2Chttps%3A%2F%2Fwww.merrill.com%2F%3Fcm_sp%3DGWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fcoronavirus-financial-tips%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fsaving-budgeting%2Fprotecting-your-finances-during-coronavirus%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fsaving-budgeting%2Fwhat-zero-percent-interest-means%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fpersonal-banking%2Fwhat-is-a-digital-wallet%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4&d_jsonv=1
IP 34.251.149.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?d_dst=1&d_rtbd=json&c_sitePromotionUrls=https%3A%2F%2Fwww.merrilledge.com%2Farticle%2Fhow-much-do-you-really-need-to-save-for-retirement%3Fcm_sp%3DGWM-SelfDirectedBrokerage-_-ME_Nav_BMH-_-G216LT00H4_L1_Nav_ME_Batch1_Gen_L1_Tile_243x105.jpg%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4047247%26productoffercode%3D3C%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5201_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049033%26productoffercode%3DCU%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5202_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049047%26productoffercode%3D75%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5203_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fsecure.bankofamerica.com%2Fapplynow%2Finitialize-workflow.go%3Frequesttype%3DC%26campaignid%3D4049016%26productoffercode%3D8R%26cm_sp%3DCons-CC-_-NotAssigned-_-CCA1HZ5204_Hero_NH_NRreturn11.23_G3_JCRLink%2Chttps%3A%2F%2Fabout.bankofamerica.com%2Fpromo%2Fassistance%2Flatest-updates-from-bank-of-america-coronavirus%2F%3Fcm_sp%3DEBZ-BAC-Announcement-_-BACAnnouncement-_-AMT2HXAC01_Engagement_Banner_CV_Payments_ShowToAll_EB_cvStimulusHlCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fadvantage_banking%2F%3Fcm_sp%3DDEP-Checking-_-NotAssigned-_-DCTASZ6M01_SuperHighlights_G3CheckingUpdate122020_advaBankSHLCta%2Chttps%3A%2F%2Fabout.bankofamerica.com%2Fen-us%2Fpartnering-locally%2Four-commitment-to-local-communities.html%3Fcm_sp%3DEBZ-Corp_SocialResponsibility-_-NotAssigned-_-EIT1SWOY01_SuperHighlights_DefaultDefaultPowerTo_powerToCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fzelle%2F%3Fcm_sp%3DMobileZelle-_-Default-_-M4T1QSET01_Highlights_NH_Zelle_CMS_Default_zelleSendEasyHLCta%2Chttps%3A%2F%2Fpromo.bankofamerica.com%2Fadvantage_banking%2F%3Fcm_sp%3DDEP-Checking-_-Checking-_-DCT8QTYM01_Highlights_NH_Checking_features_HL_bauChkCtaHL%2Chttps%3A%2F%2Fwww.bankofamerica.com%2Fdeeplink%2Fredirect.go%3Ftarget%3Ddeals_expiry%26screen%3DDeals%3AEntry%26SortedBy%3DExpiringSoon%26version%3D7.1.0%26cm_sp%3DOLB-BankAmeriDeals-Offers-_-BankAmeriDeals-_-DZT1QUOU01_Highlights_NH_BAMD_IconUpdate_G3_dealsAllDayHLCta%2Chttps%3A%2F%2Fwww.merrill.com%2F%3Fcm_sp%3DGWM-SelfDirectedBrokerage-_-Default-_-G2T1QVWF01_Highlights_NH_Merrill_InvestYourWay_AdobeDefault_HL4_investYourWayHlCta%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fcoronavirus-financial-tips%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B2_BMH_Homepage-Tile1%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fsaving-budgeting%2Fprotecting-your-finances-during-coronavirus%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B3_BMH_Homepage-Tile2%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fsaving-budgeting%2Fwhat-zero-percent-interest-means%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B4_BMH_Homepage-Tile3%2Chttps%3A%2F%2Fbettermoneyhabits.bankofamerica.com%2Fen%2Fpersonal-banking%2Fwhat-is-a-digital-wallet%3Fcm_sp%3DEBZ-FinancialEducation-_-BAC.com-Homepage-_-EF16LT00B5_BMH_Homepage-Tile4&d_jsonv=1 HTTP/1.1
Host: bofa.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jaxbuysell.com
Connection: keep-alive
Referer: http://jaxbuysell.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 414 Request-URI Too Long
Content-Length: 0
Connection: keep-alive
jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag.js
69.162.186.127200 OK 0 B URL HTTP/1.1 jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag.js
IP 69.162.186.127:0
Analyzer Verdict Alert fortinet Phishing
GET /Bank%20of%20America%20Scampage%20Updated/SignOn/login/Bank%20of%20America%20-%20Banking,%20Credit%20Cards,%20Loans%20and%20Merrill%20Investing_files/utag.js HTTP/1.1
Host: jaxbuysell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaxbuysell.com/Bank%20of%20America%20Scampage%20Updated/SignOn/login/?country_x=
Cookie: PHPSESSID=dcbfaba0c7a6e238e2ac9cf09f38ee5d
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 20:24:28 GMT
Server: Apache
Last-Modified: Sat, 19 Dec 2020 16:45:26 GMT
Accept-Ranges: bytes
Content-Length: 135317
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript