r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33c3dea45eaabae3557235f002dda989
38a1903e09bff723af30fe5080f79646247b9254
b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5465
Expires: Thu, 03 Nov 2022 00:55:00 GMT
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4348
Cache-Control: max-age=127178
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:55 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:43:33 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4348
Cache-Control: max-age=127178
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:55 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:43:33 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43ea74d83493710eb8b64a74046ff569
74dee6d9e8b796d34f2788a472b90b3f7fc79ecd
f62eff2ad4d64d785a48e2761d7f2bda9171f1e60b0e9dc525d8f589f9ef7c60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F62EFF2AD4D64D785A48E2761D7F2BDA9171F1E60B0E9DC525D8F589F9EF7C60"
Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4197
Expires: Thu, 03 Nov 2022 00:33:52 GMT
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2lRX7reX+I/DfqRGB89gnsiG5cm+a2i6yGPfB2xCc3WRUS5V+6prMG6dJbcm9Uz0qXICtWXiV7Q=
x-amz-request-id: 2B72JCTKA1MWZHB4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 02 Nov 2022 23:08:56 GMT
age: 899
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 23:23:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/contextual/banner/student-loans/50x50/task_icon_laptop-50x50.png
104.110.5.8200 OK 540 B URL HTTP/2 www01.wellsfargomedia.com/assets/images/contextual/banner/student-loans/50x50/task_icon_laptop-50x50.png
IP 104.110.5.8:0
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash a230a7ea9d60dd2217f03824b3fd3ab6
f75fd384266aa57659e1a620c1e0cebb8eec68ac
ae6dd562558a0d6e692c910de53486132faa5c6ae81d0e85d67ba7f26b789a7f
GET /assets/images/contextual/banner/student-loans/50x50/task_icon_laptop-50x50.png HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "31a-5a9edb120b4dd"
last-modified: Thu, 26 Aug 2021 01:38:17 GMT
server: Akamai Image Manager
x-serial: 93
x-check-cacheable: YES
unused62: 8096267
content-length: 540
content-type: image/png
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/css/template/homepage/homepage-horz-logo.svg
104.110.5.8200 OK 2.0 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/css/template/homepage/homepage-horz-logo.svg
IP 104.110.5.8:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4948)
Hash e56e5d0c3a6c91daa9c9e3cb35de49ec
1ac827e855541f5059c9122c624f7b5144c5faa8
6d046903ea56f94f8a7d998d662f03035b015d3019c57d88e091f16d1bd175e8
GET /assets/images/css/template/homepage/homepage-horz-logo.svg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: br
etag: "15b8-5895bfcbfa2c0"
last-modified: Mon, 24 May 2021 14:15:37 GMT
server: Akamai Resource Optimizer
strict-transport-security: max-age=31536000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 1977
unused62: 8096267
cache-control: max-age=14747171
expires: Sat, 22 Apr 2023 15:50:06 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/css/template/homepage/homepage-lock.svg
104.110.5.8200 OK 668 B URL HTTP/2 www01.wellsfargomedia.com/assets/images/css/template/homepage/homepage-lock.svg
IP 104.110.5.8:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash de6fd1f7ffea13b855770b5dc54daf72
0e4ab6e3433c7607280e977fd9e9c5442eb30344
deab472180f1d0240b8f200d69c896d68ddf08eba1928ef3d2f2fbd4beefbbfa
GET /assets/images/css/template/homepage/homepage-lock.svg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: br
etag: "596d0953-6f8"
last-modified: Thu, 24 Mar 2022 05:49:40 GMT
server: Akamai Resource Optimizer
strict-transport-security: max-age=31536000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 668
unused62: 8096267
cache-control: max-age=14747171
expires: Sat, 22 Apr 2023 15:50:06 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/contextual/banner/enterprise/1200x532/wfi000_lg_b-wf-stagecoach_rednoborder_1200x532.gif
104.110.5.8200 OK 21 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/contextual/banner/enterprise/1200x532/wfi000_lg_b-wf-stagecoach_rednoborder_1200x532.gif
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x532, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c5aa492084bbceb30f82879fc2f1ee49
0c5c60e3f23fb7c658fbff1de959d84a449cd6d8
810ea129e1e766e362f316f0605f1d3938e2feb01e4d6643d2645b51f3a8d3b8
GET /assets/images/contextual/banner/enterprise/1200x532/wfi000_lg_b-wf-stagecoach_rednoborder_1200x532.gif HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5d04f2a0-73a4"
last-modified: Sat, 16 Jul 2022 02:29:02 GMT
server: Akamai Image Manager
content-length: 20748
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/contextual/banner/checking/50x50/task_icon_house_50x50.png
104.110.5.8200 OK 584 B URL HTTP/2 www01.wellsfargomedia.com/assets/images/contextual/banner/checking/50x50/task_icon_house_50x50.png
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 03a09017d851c53b4deae9c1208828e9
bc730f9631df8094a7a4c53e756474b705347d34
53f20554e5a8e812764c7e8241e14c9117d2197e00f1b87248bf458aa8e55caa
GET /assets/images/contextual/banner/checking/50x50/task_icon_house_50x50.png HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "745-5a9edb120b8c5"
last-modified: Thu, 26 Aug 2021 01:32:31 GMT
server: Akamai Image Manager
content-length: 584
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/contextual/banner/credit-card/50x50/task_icon_credit-card_50x50.png
104.110.5.8200 OK 516 B URL HTTP/2 www01.wellsfargomedia.com/assets/images/contextual/banner/credit-card/50x50/task_icon_credit-card_50x50.png
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c73e8cdefead986c81ee32c0a049e215
68321f3dcd23983395de25c16f4898d08543dac3
14ebe41c047e0cfca8e17b68f81bc0f980b75321c35d784360cf3491b1f9a06d
GET /assets/images/contextual/banner/credit-card/50x50/task_icon_credit-card_50x50.png HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "6d2-5a9edb120b8c5"
last-modified: Thu, 26 Aug 2021 01:32:29 GMT
server: Akamai Image Manager
x-serial: 2020
x-check-cacheable: YES
content-length: 516
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/task-icon-rates-50x50.png
104.110.5.8200 OK 1.4 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/task-icon-rates-50x50.png
IP 104.110.5.8:0
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash 7be32a13d67a45689fc1147b4fc8b3c2
bf59f2f21efaecada00d9ab754b92633b565ebb4
7926323a712a1fa861283bbdbde6f6df758e3a39c418fe1459f2b5dbe18102be
GET /assets/images/homepage/task-icon-rates-50x50.png HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "a0a-5838a9bd97ac0"
last-modified: Thu, 26 Aug 2021 01:49:46 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 1408
content-type: image/png
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/css/template/homepage/home_sprite_image.png
104.110.5.8200 OK 11 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/css/template/homepage/home_sprite_image.png
IP 104.110.5.8:0
File type PNG image data, 314 x 382, 8-bit colormap, non-interlaced\012- data
Hash a6d5e1ea952cb751429428cbbd0dbc6a
412169cc7c4e578e6b0b56721f503aa0e747d313
bad076c316b96cc04b2df0418f986f332e01ff6016eab56fa116a4ef4c9ca594
GET /assets/images/css/template/homepage/home_sprite_image.png HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5f497e89-2bdd"
last-modified: Wed, 15 Dec 2021 02:04:14 GMT
server: Akamai Image Manager
x-serial: 1247
x-check-cacheable: YES
content-length: 11229
content-type: image/png
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/FICO-phone-borrowing-and-credit-970x485.jpg
104.110.5.8200 OK 27 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/FICO-phone-borrowing-and-credit-970x485.jpg
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 970x485, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 256e21139d15b167372a1c1bdd1dce6a
e75684700b62733f17573bed55f65ef3f7f3f5e4
09504bdecbf274d2b3322b86c6cc699a186b4656cc220d563fcbfb08df220b08
GET /assets/images/photography/lifestyle/970x485/FICO-phone-borrowing-and-credit-970x485.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "8a28-5838a9bd97ac0"
last-modified: Thu, 26 Aug 2021 01:34:57 GMT
server: Akamai Image Manager
content-length: 26996
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/paying-phone-beach-banking-made-easy-970x485.jpg
104.110.5.8200 OK 34 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/paying-phone-beach-banking-made-easy-970x485.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 970x485, components 3\012- data
Hash 84432ac1807c4228ebdba910e98c2a89
bb4b9ca8b506fc9cb231abd097435601cf9facd3
7b1acbecc92198d28a194bab0fa46dd84878d9cb78f3e2bbbd4ba771ef168ebd
GET /assets/images/photography/lifestyle/970x485/paying-phone-beach-banking-made-easy-970x485.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5c81bc53-8326"
last-modified: Thu, 02 Dec 2021 11:54:19 GMT
server: Akamai Image Manager
x-serial: 1401
x-check-cacheable: YES
content-length: 33574
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/couple-beach-retirement-970x485.jpg
104.110.5.8200 OK 31 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/couple-beach-retirement-970x485.jpg
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 970x485, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 879c66aeb8e3c322f11a0841c7596791
a79e6e66f3c68ff4d5b9513738db3fe338d8c742
aee5245049750ff1e0f9368e3f69e0804e637539bb95c22db5325f884fbe5e9e
GET /assets/images/photography/lifestyle/970x485/couple-beach-retirement-970x485.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "8275-5838a9bd97ac0"
last-modified: Thu, 26 Aug 2021 01:44:55 GMT
server: Akamai Image Manager
x-serial: 1372
x-check-cacheable: YES
unused62: 8096267
content-length: 31394
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/couple-moving-in-homelending-970x485.jpg
104.110.5.8200 OK 35 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/couple-moving-in-homelending-970x485.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 970x485, components 3\012- data
Hash 0ae6b7f013ef25adc455993d7ace2e34
3dbd9d6795f969425e514b54f2f1634829118e3c
d6fdad356ecabcdcfb77a0486b3e240f450369e0304739e55c71a112d5f3d2df
GET /assets/images/photography/lifestyle/970x485/couple-moving-in-homelending-970x485.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "875e-5838a9bd97ac0"
last-modified: Thu, 26 Aug 2021 01:46:17 GMT
server: Akamai Image Manager
x-serial: 1611
x-check-cacheable: YES
content-length: 34654
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/student-graduation-going-to-college-970x485.jpg
104.110.5.8200 OK 35 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/student-graduation-going-to-college-970x485.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 970x485, components 3\012- data
Hash f3fa5f93f064681db83dcf7a849e72da
3b42253a1fcdecbea780336cb13e244373fc39bb
cfd4c24ae595a860f108f4de55ce9a1744bad06d612d508c4d0bf39901b9862c
GET /assets/images/photography/lifestyle/970x485/student-graduation-going-to-college-970x485.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "891b-5838a9bd97ac0"
last-modified: Thu, 26 Aug 2021 01:46:15 GMT
server: Akamai Image Manager
x-serial: 974
x-check-cacheable: YES
content-length: 35099
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 97fa8460ce9d49e9d6251adeafede261
e4953375828341f858a49b71ccda7761ef2d9aef
5004506aeff8d1a8cc337a1768bd5a004fbb041e4f9d0cd8dd7222b599816d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4028
Cache-Control: max-age=116437
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:55 GMT
Etag: "63621024-1d7"
Expires: Fri, 04 Nov 2022 07:44:32 GMT
Last-Modified: Wed, 02 Nov 2022 06:37:24 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 97fa8460ce9d49e9d6251adeafede261
e4953375828341f858a49b71ccda7761ef2d9aef
5004506aeff8d1a8cc337a1768bd5a004fbb041e4f9d0cd8dd7222b599816d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1032
Cache-Control: max-age=113441
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:55 GMT
Etag: "63621024-1d7"
Expires: Fri, 04 Nov 2022 06:54:36 GMT
Last-Modified: Wed, 02 Nov 2022 06:37:24 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 97fa8460ce9d49e9d6251adeafede261
e4953375828341f858a49b71ccda7761ef2d9aef
5004506aeff8d1a8cc337a1768bd5a004fbb041e4f9d0cd8dd7222b599816d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4028
Cache-Control: max-age=116437
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:55 GMT
Etag: "63621024-1d7"
Expires: Fri, 04 Nov 2022 07:44:32 GMT
Last-Modified: Wed, 02 Nov 2022 06:37:24 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 97fa8460ce9d49e9d6251adeafede261
e4953375828341f858a49b71ccda7761ef2d9aef
5004506aeff8d1a8cc337a1768bd5a004fbb041e4f9d0cd8dd7222b599816d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1032
Cache-Control: max-age=113441
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:55 GMT
Etag: "63621024-1d7"
Expires: Fri, 04 Nov 2022 06:54:36 GMT
Last-Modified: Wed, 02 Nov 2022 06:37:24 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/assets/js/wfui/appdynamics/appdEUMConfig.js
23.36.79.27200 OK 901 B URL HTTP/1.1 static.wellsfargo.com/assets/js/wfui/appdynamics/appdEUMConfig.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1952), with no line terminators
Hash 5dcc7c101ced74367609685d577093f6
f0d8214335e3c33b634048b992afd536f5bd3e43
10aab16ccfb5374425dc6ee64453a7fe6d7b6dfa47ab65779f42c7db740da1ef
GET /assets/js/wfui/appdynamics/appdEUMConfig.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 20 Jan 2022 02:38:25 GMT
Vary: Accept-Encoding
ETag: W/"61e8cb21-7a0"
Cache-Control: max-age=31536000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Content-Encoding: gzip
Content-Length: 901
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=1%2fUPrpMmHofrn1n0NBLjAw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
103.153.182.185200 OK 64 kB URL HTTP/1.1 www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
IP 103.153.182.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (549), with CRLF line terminators
Hash a2bdd32e340e7cdc91ba3b63bb6ed1f7
a0f3e9d3f80433d211f6409a10e79095693c8562
e2abb0b11e94d1993d63ba680434ad970acd7333713aeeb3dc84771281af77b9
Analyzer Verdict Alert openphish Wells Fargo & Company
GET /qwsa/smoth/kjfar.php HTTP/1.1
Host: www.pinu4564ps4t.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: AMCV_1BAA15F354F731E60A4C98A4%40AdobeOrg=-1124106680%7CMCMID%7C83259019738990653724559007633900770687%7CMCAAMLH-1668023548%7C6%7CMCAAMB-1668023548%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C677917998%7CMCOPTOUT-1667425948s%7CNONE%7CvVersion%7C5.2.0; _ga=GA1.1.22271287.1667418749; _gid=GA1.1.1191612200.1667418749
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 23:23:55 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/woman-tablet-investing-basics-970x485.jpg
104.110.5.8200 OK 29 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/woman-tablet-investing-basics-970x485.jpg
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 970x485, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3cf1924606b8856e7f86f1395acb71cd
fee658d1b3f07dce1c0e2988dafa4c112c00fd2e
eb38bf6136b9b597e78c4a80f041d4e3bbc9231b348e999ba5aa1e52ec2bbd0f
GET /assets/images/photography/lifestyle/970x485/woman-tablet-investing-basics-970x485.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "7fe5-5838a9bd97ac0"
last-modified: Thu, 26 Aug 2021 01:32:48 GMT
server: Akamai Image Manager
x-serial: 1798
x-check-cacheable: YES
content-length: 28720
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/wfic693_ph_b-jk_1027_3356_304x194.jpg
104.110.5.8200 OK 9.5 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/wfic693_ph_b-jk_1027_3356_304x194.jpg
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 304x194, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 173f9287cd31765a0c56d1a2f7a3c9aa
1c32f7e4346aa0d936c930690abaa96db7528acc
fbe240520ac06a89f4bc6dd3bd580d5ee2ffa5c2adcf8f5934abf16ac8eeccd3
GET /assets/images/homepage/wfic693_ph_b-jk_1027_3356_304x194.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "9ba7-5aceb06e0b615"
last-modified: Thu, 26 Aug 2021 01:32:21 GMT
server: Akamai Image Manager
x-serial: 1337
x-check-cacheable: YES
content-length: 9458
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www.wellsfargo.com/js/global/homepage_iaoffer.js
23.36.79.18200 OK 1.4 kB URL HTTP/1.1 www.wellsfargo.com/js/global/homepage_iaoffer.js
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3251), with no line terminators
Hash bc85a371af6ddfbb76df08a41424f906
bfe356ca97272b193ee616268ab1bd83cc4c9767
0f0f281c50c59d2f26861f648cd3325721935f6bdabc5cf3df75d2c33bfd7a0d
GET /js/global/homepage_iaoffer.js HTTP/1.1
Host: www.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Expires: Mon, 31 Oct 2022 19:00:17 GMT
Last-Modified: Thu, 15 Sep 2022 21:30:56 GMT
ETag: "63239990-cb3"
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' *.wellsfargo.com
Content-Type: application/javascript; charset=utf-8
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1370
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=utSlgNm156sVRMAL1K9lyw%3d%3d; Domain=www.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www.wellsfargo.com/css/home/homepage_ret.css
23.36.79.18200 OK 10 kB URL HTTP/1.1 www.wellsfargo.com/css/home/homepage_ret.css
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (8236)
Hash 841e9312d09e4fc91fb76f7575fda838
7153c360ed454344ac902f3499ea51cfe5b7fdea
9b97646d07f6c6c5f4efbf65b57006f236d2d67d639ae07e8e2fb4912ef4036d
GET /css/home/homepage_ret.css HTTP/1.1
Host: www.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Expires: Fri, 28 Oct 2022 01:31:54 GMT
Last-Modified: Thu, 15 Sep 2022 21:30:56 GMT
ETag: "63239990-ce4c"
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' *.wellsfargo.com
Content-Type: text/css
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9977
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=PJ6q9O3MIaJh4H0m56X89A%3d%3d; Domain=www.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/toppages/utag.sync.js
23.36.79.27200 OK 61 B URL HTTP/1.1 static.wellsfargo.com/tracking/toppages/utag.sync.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 4c7fda6fb31861bb59b45d6adb0ff0c0
b23155848db18f78ac903f557dbbf994260ec8a8
994bb1ce83c5ac286db2f3de96871fb352224ec0a490d0a6f9a2b17233a2deb4
GET /tracking/toppages/utag.sync.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 14 May 2021 19:00:22 GMT
ETag: "609ec8c6-29"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 61
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=s5XFRpsHvR5EJhhE+xG2pA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www.wellsfargo.com/assets/images/css/template/homepage/homepage-signon-lock.svg
23.36.79.18200 OK 1.8 kB URL HTTP/1.1 www.wellsfargo.com/assets/images/css/template/homepage/homepage-signon-lock.svg
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3457)
Hash bcc46199696e49397de7e3387296c638
e2a05f7044b577bc1bb2e76bebb0bf21866c8d80
5bfba37b8299e13d6bd8cd72be9222a1a3da98c11cb9906a66dab13692f3ae62
GET /assets/images/css/template/homepage/homepage-signon-lock.svg HTTP/1.1
Host: www.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Fri, 08 Mar 2019 00:50:27 GMT
ETag: "5c81bc53-f91"
Expires: Sun, 09 Apr 2023 04:22:23 GMT
Cache-Control: max-age=15552000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Accept-Ranges: bytes
Content-Security-Policy: frame-ancestors 'self' *.wellsfargo.com
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1816
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=CDRx7TaJtD3nLvUNDDkr+g%3d%3d; Domain=www.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www.wellsfargo.com/js/vendor/jquery.min.js
23.36.79.18200 OK 33 kB URL HTTP/1.1 www.wellsfargo.com/js/vendor/jquery.min.js
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (8077)
Hash 168e3db9aed10d5a534287cbff2304e0
169ff7955da23134626a75db6337232feeebef4a
1140ecb834e6e1aa2a5ec74793e9a5ce3d6a1c47b384b63f7a61646ca0b54618
GET /js/vendor/jquery.min.js HTTP/1.1
Host: www.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Expires: Tue, 18 Oct 2022 03:07:56 GMT
Last-Modified: Thu, 15 Sep 2022 21:30:56 GMT
ETag: "63239990-17d5c"
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' *.wellsfargo.com
Content-Type: application/javascript; charset=utf-8
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33308
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=0r7Z0qFiJtP5geFUyvZsUw%3d%3d; Domain=www.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www17.wellsfargomedia.com/assets/fonts/wellsfargosans-rg.woff2
104.110.27.78200 OK 22 kB URL HTTP/2 www17.wellsfargomedia.com/assets/fonts/wellsfargosans-rg.woff2
IP 104.110.27.78:0
File type Web Open Font Format (Version 2), TrueType, length 22424, version 1.13107\012- data
Hash 0a1639ebe9fab396657a62aa5233c832
9b58164729ad918dd7255e4856f9da7f3a90bfde
631f3b6267a831a8d67c45e480b5d5a2601f10ff8708bcf3a45a41b377a129cc
GET /assets/fonts/wellsfargosans-rg.woff2 HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 22424
last-modified: Fri, 03 Sep 2021 13:01:20 GMT
etag: "61321ca0-5798"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
x-content-type-options: nosniff
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=4872203
expires: Thu, 29 Dec 2022 08:47:18 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
www17.wellsfargomedia.com/assets/images/css/template/chevron-right-blue.png
104.110.27.78200 OK 140 B URL HTTP/2 www17.wellsfargomedia.com/assets/images/css/template/chevron-right-blue.png
IP 104.110.27.78:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7838430f8f3db208f1791d12275f882c
f099b34e9cd7bb9b8ccfbe0284cf818ef1747a9a
15edc68516d9016f5df0651edcd4eedfd5c2f440d85f932f7a2b973b70d37883
GET /assets/images/css/template/chevron-right-blue.png HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "519fc766-3fc"
last-modified: Mon, 25 Jul 2022 06:04:22 GMT
server: Akamai Image Manager
x-serial: 1189
x-check-cacheable: YES
content-length: 140
content-type: image/webp
cache-control: private, no-transform, max-age=673687
expires: Thu, 10 Nov 2022 18:32:02 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www17.wellsfargomedia.com/assets/images/css/template/homepage/alert-icon.svg
104.110.27.78200 OK 736 B URL HTTP/2 www17.wellsfargomedia.com/assets/images/css/template/homepage/alert-icon.svg
IP 104.110.27.78:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1204)
Hash bdfb67c215c8dc4e604f685344b65949
d4e8763c14c836c613e929e2f8fe4e22b9e23620
f3349f04bdeb0bd74aeae7a0a095e5d28613381b9bdc53b2f30fe72496c50670
GET /assets/images/css/template/homepage/alert-icon.svg HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: br
etag: "731-5a5af660e87e9"
last-modified: Fri, 17 Sep 2021 19:01:55 GMT
server: Akamai Resource Optimizer
strict-transport-security: max-age=31536000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 736
unused62: 8096267
cache-control: max-age=1686060
expires: Tue, 22 Nov 2022 11:44:55 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www17.wellsfargomedia.com/assets/images/css/template/homepage/homepage-magnifying-glass.png
104.110.27.78200 OK 236 B URL HTTP/2 www17.wellsfargomedia.com/assets/images/css/template/homepage/homepage-magnifying-glass.png
IP 104.110.27.78:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8cf6735df721c60affadb70ad95732eb
ae8a42ebbd6b60630e2c612e924c4fd66a4aca33
8dc5436dce4423f0e53e85904b6dc0552c1c8bbde0dd4ec1c929a1c272201c4c
GET /assets/images/css/template/homepage/homepage-magnifying-glass.png HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "59c2114b-12e"
last-modified: Sat, 23 Jul 2022 13:52:11 GMT
server: Akamai Image Manager
content-length: 236
content-type: image/webp
cache-control: private, no-transform, max-age=627919
expires: Thu, 10 Nov 2022 05:49:14 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www17.wellsfargomedia.com/assets/images/css/template/homepage/icn-uti-checkbox.svg
104.110.27.78200 OK 340 B URL HTTP/2 www17.wellsfargomedia.com/assets/images/css/template/homepage/icn-uti-checkbox.svg
IP 104.110.27.78:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9220f719cab4a7b6dfdaa1079be9a23a
64dcd89f5d560776683266ce95ec990d091538b1
90b7cbc17da091adaf65ac3a41ecb457abfe9020afb9e31c92510453e1fa78df
GET /assets/images/css/template/homepage/icn-uti-checkbox.svg HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: br
etag: "5c81bc53-2d8"
last-modified: Thu, 07 Apr 2022 01:06:07 GMT
server: Akamai Resource Optimizer
strict-transport-security: max-age=31536000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 340
cache-control: max-age=1742881
expires: Wed, 23 Nov 2022 03:31:56 GMT
date: Wed, 02 Nov 2022 23:23:55 GMT
X-Firefox-Spdy: h2
www.wellsfargo.com/js/global/homepage_per.js
23.36.79.18200 OK 21 kB URL HTTP/1.1 www.wellsfargo.com/js/global/homepage_per.js
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (8109)
Hash 00fc3fb1a2eba9283c2e9041a9caa221
37c4728c7144549d040c01f9817f45a523415c61
42119b1ab76e0ff2071fbef81dfcd426f9aec7b6a8b8c62592ba4bebff9493db
GET /js/global/homepage_per.js HTTP/1.1
Host: www.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Expires: Wed, 02 Nov 2022 23:53:55 GMT
Last-Modified: Thu, 15 Sep 2022 21:31:02 GMT
ETag: "63239996-133d8"
Cache-Control: max-age=1800
Content-Type: application/javascript; charset=utf-8
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Security-Policy: frame-ancestors 'self' *.wellsfargo.com
Content-Length: 21413
Date: Wed, 02 Nov 2022 23:23:55 GMT
Connection: keep-alive
Set-Cookie: DCID=es7LfSHcWq3H75yUjwOpx%2fY+y7VrdL3aWyvnINN6RuG868oHisc6t+D6wkiMJAgS; Domain=www.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:55 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www.pinu4564ps4t.ru/target/offers?contentIdList=WF_CON_HP_PRIMARY_BNR_1&pageID=per_home&language=en
103.153.182.185404 Not Found 315 B URL HTTP/1.1 www.pinu4564ps4t.ru/target/offers?contentIdList=WF_CON_HP_PRIMARY_BNR_1&pageID=per_home&language=en
IP 103.153.182.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /target/offers?contentIdList=WF_CON_HP_PRIMARY_BNR_1&pageID=per_home&language=en HTTP/1.1
Host: www.pinu4564ps4t.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
Cookie: AMCV_1BAA15F354F731E60A4C98A4%40AdobeOrg=-1124106680%7CMCMID%7C83259019738990653724559007633900770687%7CMCAAMLH-1668023548%7C6%7CMCAAMB-1668023548%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C677917998%7CMCOPTOUT-1667425948s%7CNONE%7CvVersion%7C5.2.0; _ga=GA1.1.22271287.1667418749; _gid=GA1.1.1191612200.1667418749
HTTP/1.1 404 Not Found
Date: Wed, 02 Nov 2022 23:23:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd65439b27a0101cd831309f178fbb45
4daa9343dda0f37ba734e2b5500caf2728cf89db
37e6d155f598b5154e3ce96105c39798716b5d35e12a98b9aec172c160de5f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1893
Cache-Control: max-age=119665
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:56 GMT
Etag: "63622518-1d7"
Expires: Fri, 04 Nov 2022 08:38:21 GMT
Last-Modified: Wed, 02 Nov 2022 08:06:48 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.pinu4564ps4t.ru/as/jsLog
103.153.182.185404 Not Found 315 B URL HTTP/1.1 www.pinu4564ps4t.ru/as/jsLog
IP 103.153.182.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
POST /as/jsLog HTTP/1.1
Host: www.pinu4564ps4t.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 181
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
Cookie: AMCV_1BAA15F354F731E60A4C98A4%40AdobeOrg=-1124106680%7CMCMID%7C83259019738990653724559007633900770687%7CMCAAMLH-1668023548%7C6%7CMCAAMB-1668023548%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C677917998%7CMCOPTOUT-1667425948s%7CNONE%7CvVersion%7C5.2.0; _ga=GA1.1.22271287.1667418749; _gid=GA1.1.1191612200.1667418749
HTTP/1.1 404 Not Found
Date: Wed, 02 Nov 2022 23:23:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
push.services.mozilla.com/
35.80.175.197101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.175.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gxbinDln0P2OzIpwsqyRHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: x8Rr0DpYilDhoylH5p7mUn9NJpU=
connect.secure.wellsfargo.com/auth/static/prefs/login-userprefs.min.js
23.36.79.24200 OK 152 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/prefs/login-userprefs.min.js
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 152 kB (151805 bytes)
Hash 19fd562b3b6e59bf3d26c55c0fd2f995
eeab9b2d668c28b99106a89b8b21c4fdc6728cab
df8181885ffae47d75aa99a03721ac4e8908f4c1126ecd67651367c2e3716ff7
GET /auth/static/prefs/login-userprefs.min.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Allow: GET, POST, OPTIONS
Access-Control-Allow-Methods: POST
X-Frame-Options: SAMEORIGIN
ETag: W/"63589699-172f"
Last-Modified: Wed, 26 Oct 2022 02:08:25 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Wed, 02 Nov 2022 23:23:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
WesdAksn=A2COqDqEAQAAh8BA-G7kh_BACnk4LfdjxkE_Eh7tONbdZ52-FzC9ISEp4goFAVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|f365156332357982b66f02886f2e2c3b94fbaf5c; Path=/; Max-Age=1577847600; Domain=wellsfargo.com; Secure
DCID=cbK6pXPP6jhGrxwFAbRvcwSzQ1t4QZyOPfKnLTN4Zx%2fWskSblZeKhzfd4XbqI6ob; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:55 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.27402650713403787
23.36.79.24301 Moved Permanently 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.27402650713403787
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AIDO/mint.js?dt=login&r=0.27402650713403787 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.27402650713403787
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Set-Cookie: DCID=dxAuyW1MzX1JdtPmtckceA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/PIDO/pic.js?r=0.4113498053686391
23.36.79.24301 Moved Permanently 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/PIDO/pic.js?r=0.4113498053686391
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /PIDO/pic.js?r=0.4113498053686391 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://connect.secure.wellsfargo.com/PIDO/pic.js?r=0.4113498053686391
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Set-Cookie: DCID=7MLh2oVQm1GpXLMZOaTxTw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www17.wellsfargomedia.com/assets/images/css/template/homepage/icon-marquee-dot-active.svg
104.110.27.78200 OK 299 B URL HTTP/2 www17.wellsfargomedia.com/assets/images/css/template/homepage/icon-marquee-dot-active.svg
IP 104.110.27.78:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d3eef860be7d88785ed7f7bc67b2e410
fb26b17ce1a65445b4bb59695f81ab281148b6b8
70358954c261d846c31abc9e2b320a84620d73399c9dd8e458a4f1b8f4267e83
GET /assets/images/css/template/homepage/icon-marquee-dot-active.svg HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: br
etag: "242-5838a9bd97ac0"
last-modified: Mon, 20 Sep 2021 14:42:53 GMT
server: Akamai Resource Optimizer
strict-transport-security: max-age=31536000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 299
unused62: 8096267
cache-control: max-age=1686057
expires: Tue, 22 Nov 2022 11:44:54 GMT
date: Wed, 02 Nov 2022 23:23:57 GMT
X-Firefox-Spdy: h2
www17.wellsfargomedia.com/assets/images/css/template/homepage/icon-marquee-dot-inactive.svg
104.110.27.78200 OK 297 B URL HTTP/2 www17.wellsfargomedia.com/assets/images/css/template/homepage/icon-marquee-dot-inactive.svg
IP 104.110.27.78:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 43a8f8c2e028bb9f809fab97f9d16862
6a711bed3a1d8ca0d1597d2a838ca5ee622800b7
990eb582de04dbb5bdfac66214928eb4f80a0144361a2e29a4ebc7f500c542df
GET /assets/images/css/template/homepage/icon-marquee-dot-inactive.svg HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: br
etag: "5c81bc53-24b"
last-modified: Wed, 30 Mar 2022 22:16:30 GMT
server: Akamai Resource Optimizer
strict-transport-security: max-age=31536000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 297
cache-control: max-age=1686057
expires: Tue, 22 Nov 2022 11:44:54 GMT
date: Wed, 02 Nov 2022 23:23:57 GMT
X-Firefox-Spdy: h2
www17.wellsfargomedia.com/assets/images/css/template/homepage/home_sprite_image.png
104.110.27.78200 OK 11 kB URL HTTP/2 www17.wellsfargomedia.com/assets/images/css/template/homepage/home_sprite_image.png
IP 104.110.27.78:0
File type PNG image data, 314 x 382, 8-bit colormap, non-interlaced\012- data
Hash a6d5e1ea952cb751429428cbbd0dbc6a
412169cc7c4e578e6b0b56721f503aa0e747d313
bad076c316b96cc04b2df0418f986f332e01ff6016eab56fa116a4ef4c9ca594
GET /assets/images/css/template/homepage/home_sprite_image.png HTTP/1.1
Host: www17.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.wellsfargo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5f497e89-2bdd"
last-modified: Thu, 08 Sep 2022 04:16:33 GMT
server: Akamai Image Manager
x-serial: 1247
x-check-cacheable: YES
content-length: 11229
content-type: image/png
cache-control: private, no-transform, max-age=2437142
expires: Thu, 01 Dec 2022 04:22:59 GMT
date: Wed, 02 Nov 2022 23:23:57 GMT
X-Firefox-Spdy: h2
static.wellsfargo.com/tracking/toppages/utag.js
23.36.79.27200 OK 57 kB URL HTTP/1.1 static.wellsfargo.com/tracking/toppages/utag.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (9419), with CRLF line terminators
Hash 7d4e45133d4690ea0ea4eaff2b592c6e
30c4af61f2d2b3e03cf0596feaa93e85543063ea
962f8580c8a062a50b48fa236ce72a1557a215a967b62a13c39cb036c7534655
GET /tracking/toppages/utag.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 22 Sep 2022 20:06:47 GMT
Vary: Accept-Encoding
ETag: W/"632cc057-35560"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 56759
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=28DE1HH9PLH7S9bbXRpjSw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/auth/static/prefs/atadun.js
23.36.79.24200 OK 607 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/prefs/atadun.js
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash 00c66df208db2e1ba86a1bf44853001c
703b030e21167b9bbb52ae54bca96921a886c2dc
ab1989dd07ba1ed256db9131647ea9cb1b3735fac736fd27fb73b4b44c6e45b9
GET /auth/static/prefs/atadun.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 26 Oct 2022 01:50:40 GMT
Vary: Accept-Encoding
ETag: W/"63589270-4a0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Content-Encoding: gzip
Content-Length: 607
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=OTh1OGXfyHZNRzF+%2fsSQFdXE2%2fOCetmtm2y9BuNoroGYXLiXloD0mRlkb58pkwRZ; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:57 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www.pinu4564ps4t.ru/assets/images/global/s.gif?log=1&cb=1667431435509&jsLogging=iaCallLog
103.153.182.185404 Not Found 315 B URL HTTP/1.1 www.pinu4564ps4t.ru/assets/images/global/s.gif?log=1&cb=1667431435509&jsLogging=iaCallLog
IP 103.153.182.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /assets/images/global/s.gif?log=1&cb=1667431435509&jsLogging=iaCallLog HTTP/1.1
Host: www.pinu4564ps4t.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
Cookie: AMCV_1BAA15F354F731E60A4C98A4%40AdobeOrg=-1124106680%7CMCMID%7C83259019738990653724559007633900770687%7CMCAAMLH-1668023548%7C6%7CMCAAMB-1668023548%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C677917998%7CMCOPTOUT-1667425948s%7CNONE%7CvVersion%7C5.2.0; _ga=GA1.1.22271287.1667418749; _gid=GA1.1.1191612200.1667418749
HTTP/1.1 404 Not Found
Date: Wed, 02 Nov 2022 23:23:57 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.pinu4564ps4t.ru/assets/images/global/s.gif?Log=1&Program=EventReporting&Event=IADefaultOffer&pageID=per_home&EventDesc=DisplayCMSDefaultOffer&offerType=cmsDefault&cb=1667431437036
103.153.182.185404 Not Found 315 B URL HTTP/1.1 www.pinu4564ps4t.ru/assets/images/global/s.gif?Log=1&Program=EventReporting&Event=IADefaultOffer&pageID=per_home&EventDesc=DisplayCMSDefaultOffer&offerType=cmsDefault&cb=1667431437036
IP 103.153.182.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /assets/images/global/s.gif?Log=1&Program=EventReporting&Event=IADefaultOffer&pageID=per_home&EventDesc=DisplayCMSDefaultOffer&offerType=cmsDefault&cb=1667431437036 HTTP/1.1
Host: www.pinu4564ps4t.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
Cookie: AMCV_1BAA15F354F731E60A4C98A4%40AdobeOrg=-1124106680%7CMCMID%7C83259019738990653724559007633900770687%7CMCAAMLH-1668023548%7C6%7CMCAAMB-1668023548%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C677917998%7CMCOPTOUT-1667425948s%7CNONE%7CvVersion%7C5.2.0; _ga=GA1.1.22271287.1667418749; _gid=GA1.1.1191612200.1667418749
HTTP/1.1 404 Not Found
Date: Wed, 02 Nov 2022 23:23:57 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4068
Expires: Thu, 03 Nov 2022 00:31:45 GMT
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4068
Expires: Thu, 03 Nov 2022 00:31:45 GMT
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4068
Expires: Thu, 03 Nov 2022 00:31:45 GMT
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4068
Expires: Thu, 03 Nov 2022 00:31:45 GMT
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2985da2d-c17e-4258-b3e5-f70ccec94347.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2985da2d-c17e-4258-b3e5-f70ccec94347.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 04b435cec384cb5293ba193dc47dd65e
1c527195f3ddd4b1d73c2e2246b6bbdc2721d7b9
128afdd19f7dd88aa1788728ecda7191fb28e4e482b7e6fd508c58218c862f1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2985da2d-c17e-4258-b3e5-f70ccec94347.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10101
x-amzn-requestid: 8761b5b7-19ac-4096-bb98-8194894648a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a_iCZEzxIAMFgFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6362e3a8-4b01c9d20865821c0394cb5b;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 21:39:52 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: A7-5QOQ1S_JTuVUn3IioRF9uziHoWCJXQHk8GMN-m4U8osRUvL2jFQ==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:44:36 GMT
age: 5961
etag: "1c527195f3ddd4b1d73c2e2246b6bbdc2721d7b9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8dd5c36-0f84-4c71-b515-880ebaa20d52.png
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8dd5c36-0f84-4c71-b515-880ebaa20d52.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff4da3d2c66d6f155fea05b88127873d
eafb1bafaa2feb2b188aeb1bc8caac505337d258
82e62da33562177403fcab7a552a5f5f64c91ab4cee25dd1cd979dedfe066cde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8dd5c36-0f84-4c71-b515-880ebaa20d52.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7972
x-amzn-requestid: fa64bad3-9070-43c8-83d1-803fb3696318
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8cx_GSlIAMFZqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361a80c-5806a37c15d428d96366abfa;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 23:13:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iqgd7vcEMOwtje9j7BtJq-06_n0xpr55wk0Ln3ICopiN12Kbwsp0Xg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 09:58:00 GMT
age: 48357
etag: "eafb1bafaa2feb2b188aeb1bc8caac505337d258"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 788a6ab1a5391958811453809e08ec74
c8188247edb78ee5f3c469a612b2430bbcd513b6
e961a4412a3f73ab7da9db2da06e72528a2abded50a442741687787933e98900
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10255
x-amzn-requestid: 5414f7ef-f510-4666-97f4-c8cb042f6877
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: atDhDEstIAMFlAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b7fa0-76cd3cf7260dfe7c66ded970;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 07:07:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7V1UVCycRm1iW3P_Pm8zi-M9y4xwHdLwPe0rRIP7ASzvu8BfSJtnFw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 04:11:49 GMT
age: 69128
etag: "c8188247edb78ee5f3c469a612b2430bbcd513b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d61981c-a7e8-43ae-bb4a-ada61e2d1837.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d61981c-a7e8-43ae-bb4a-ada61e2d1837.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cf58e368cf1020c3a736395996ee057
d7a6266ee5b7dd8984c9a203fc94669d50978c3b
8406463a50a8dabe29182a1872e9d37723ba1c2f756f2bbf95846cae7ac9d11d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d61981c-a7e8-43ae-bb4a-ada61e2d1837.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10208
x-amzn-requestid: 4ad004f2-1600-4f6c-8877-548ccf64c787
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avzazHrVIAMF5QA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c9911-711f4cb1024e76ee66d612c6;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 03:08:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4GEk977nFhpTF_BA21pF6mp7H5jZsyHk7U5RAPtM0qm5OGz-0OB8og==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 03:55:15 GMT
age: 70122
etag: "d7a6266ee5b7dd8984c9a203fc94669d50978c3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a20b50a-8733-4b26-831f-c0a5c7afc605.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a20b50a-8733-4b26-831f-c0a5c7afc605.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26182d39e6261f137221e7f49dc4bf57
9feb2d147394a8bde9df6184de4e95e2c0e2c67c
55979ae48a023c4dce97ab1ac085ae797a650f82ef5a8cac0ac57e43f0fabb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a20b50a-8733-4b26-831f-c0a5c7afc605.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9061
x-amzn-requestid: 46da4a81-4629-485e-a1ac-6d1cf7794a1a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avzazGt0IAMFsSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c9911-0225b41020c46521683bdf7a;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 03:08:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: du60l8S7Y1FiCa1ZW-Jnk8SDNCVuvmGzlO2d5kRHWmvNOUrFhE_5yg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 05:24:19 GMT
age: 64778
etag: "9feb2d147394a8bde9df6184de4e95e2c0e2c67c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: w5Nv6yf06dCHv6q9wt8-guOfQSMywfZFoXxwWvcLc9FtdwgRIqPcUQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 17:57:00 GMT
age: 19617
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/glu.js
23.36.79.24200 OK 34 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/glu.js
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3052d085b0c95c30d97d171e75ea0035
8cf2be7b2bf9c8449b6e8a89cd6576927e764c11
2ca6b1badd1e43437455a8fe9b9a8f6a48234eceeef776ede0b2541528c63ad0
GET /AIDO/glu.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 34019
Vary: Origin, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Content-Encoding: gzip
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=%2frhs2Vsl9PMLkJTElq9Cfes%2fb3GmkUsszrvKD4jBg2U%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:57 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.27402650713403787
23.36.79.24200 OK 35 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.27402650713403787
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 83149295fd2b9c8ed2890f11d7dc2645
9b61818a128fa92b89c31212acc49056da5bcdbd
9a5e25c879424c91f822bac39e7800e6c0ba4534c97a510f4e886ef26aaa2db2
GET /AIDO/mint.js?dt=login&r=0.27402650713403787 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.pinu4564ps4t.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 34711
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=GB9n+YARtAUNEEe9O5lY7mtEEJhWDlg%2f11pS27yrHBFuhE2ub5Ph5sM87Lkp99em; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:57 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www.wellsfargo.com/assets/images/icons/icon-hires_192x192.png
23.36.79.18200 OK 3.5 kB URL HTTP/1.1 www.wellsfargo.com/assets/images/icons/icon-hires_192x192.png
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 747ec8a6d8d3fba144f633730beed248
b964bae36903dc313023c922808a2956e21a77fe
ec992654b49d3bd0e6bec47d8dc6b4c82cb763c17edbd5a4d6da2f4b27846825
GET /assets/images/icons/icon-hires_192x192.png HTTP/1.1
Host: www.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3535
Last-Modified: Fri, 13 Aug 2021 23:00:54 GMT
ETag: "6116f9a6-dcf"
Expires: Sun, 09 Apr 2023 04:13:39 GMT
Cache-Control: max-age=15552000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Accept-Ranges: bytes
Content-Security-Policy: frame-ancestors 'self' *.wellsfargo.com
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=b9ZKHrGdmXjnJbuc57driQ%3d%3d; Domain=www.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www.wellsfargo.com/favicon.ico
23.36.79.18200 OK 1.4 kB URL HTTP/1.1 www.wellsfargo.com/favicon.ico
IP 23.36.79.18:0
ASN #20940 Akamai International B.V.
File type MS Windows icon resource - 1 icon, 48x48, 8 bits/pixel\012- data
Hash 0f5d7a2ef8a78a4dba392b67ddc5316f
f83ca968796c3d11e3b88c1e6fd42da311a45451
287d3ef0226ffacafca838fc90d955ea4a12e7d06608bbc2f453e5f179caf6da
GET /favicon.ico HTTP/1.1
Host: www.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Expires: Fri, 14 Oct 2022 13:53:38 GMT
Last-Modified: Thu, 22 Sep 2022 21:40:44 GMT
ETag: "632cd65c-ebe"
Cache-Control: max-age=86400
Content-Type: image/x-icon
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Accept-Ranges: bytes
Content-Security-Policy: frame-ancestors 'self' *.wellsfargo.com
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 02 Nov 2022 23:23:57 GMT
Content-Length: 1442
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=GrSL1AVykSH+I82%2fC3jvmQ%3d%3d; Domain=www.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/PIDO/pic.js?r=0.4113498053686391
23.36.79.24200 OK 37 kB URL HTTP/1.1 connect.secure.wellsfargo.com/PIDO/pic.js?r=0.4113498053686391
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2f4fbd117fa12efae1ce23fcd7825bc4
88d3b2b550e29dd468db4e1899280046ccd6a7c1
c09d5e6e5b19236c019203a9b88c42863059ce8136371b30656c3a980002a754
GET /PIDO/pic.js?r=0.4113498053686391 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.pinu4564ps4t.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 37328
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 02 Nov 2022 23:23:57 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=bSB6G8+Q3UvlppIyLr8enoBl9sAlZiZH2WHd57hE5hA%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:57 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/accounts/static/7M/accounts/short/accounts-cache.js
23.36.79.24200 OK 573 B URL HTTP/1.1 connect.secure.wellsfargo.com/accounts/static/7M/accounts/short/accounts-cache.js
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
Hash c9c1dd0b5080304df848781e567df9a7
6ebb0fce3ee1a15e7745bd0b9563c6b84aed5f54
ab48fca72c13f29457a23857b6bc5d2ab6b5b733bf97665fc3198b0deed9ce37
GET /accounts/static/7M/accounts/short/accounts-cache.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 10 Oct 2022 07:35:32 GMT
Vary: Accept-Encoding
ETag: W/"6343cb44-497"
Cache-Control: max-age=1800
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Content-Length: 573
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=J6Glvm12e7RaE2PvFr3fZVPqMgqVqQIH3e5uhfv38f+XEGr8uJNZDO8JpxzKBeao; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:58 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/ga/gtag.js?id=UA-107148943-1
23.36.79.27200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?id=UA-107148943-1
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65508)
Hash f0bce3a74e635ab88b299b1f625c99a4
345faf01029820b11abc73022ece8fb8e51cc321
faebd8dced2c15d37da85427c6e60aecb6a1a5f75e888280d447e93e64102c8e
GET /tracking/ga/gtag.js?id=UA-107148943-1 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-1ca73"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45086
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=tQ28in3x9GcJ7pf+%2fd3wog%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/gb/detector-dom.min.js
23.36.79.27200 OK 132 kB URL HTTP/1.1 static.wellsfargo.com/tracking/gb/detector-dom.min.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65434)
Size 132 kB (131829 bytes)
Hash 73ad7a8f8ccda765b898b038f90d8274
756ac35ad2422d93a0b327dfeff7fe9200695883
60ccc38cf175aba7cbe63bf1ec6319b5c1648d9a52014dfefa6ec718476a17b7
GET /tracking/gb/detector-dom.min.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 22 Sep 2022 20:03:51 GMT
Vary: Accept-Encoding
ETag: W/"632cbfa7-6b8d3"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 131829
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=K%2f9WxbxVUV7gM%2fWxilN1GA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www01.wellsfargomedia.com/assets/images/homepage/6825911_gettyimages-1153899955_img_hph_1200x532.jpg
104.110.5.8200 OK 45 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/6825911_gettyimages-1153899955_img_hph_1200x532.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 1200x532, components 3\012- data
Hash 07e54bb79e74139ebafb28fee72b843c
9b295c9bc8fe86846b0f0c1eb4f25bcc70cff70f
25a7b2470715372a0a94a6537d9bace902f317e038645f4cc867552e42e0162a
GET /assets/images/homepage/6825911_gettyimages-1153899955_img_hph_1200x532.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "e10b-5bf55c8330276"
last-modified: Thu, 26 Aug 2021 01:33:53 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 45290
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/wfic765_pg_1200x532.jpg
104.110.5.8200 OK 57 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/wfic765_pg_1200x532.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x532, components 3\012- data
Hash 2fd7f58f86d49c1420f067a1cdce155f
204975aca6ad5a46067c4bb564e25a5356d25096
8d065126eb6eef432a47f7597e58dca37cc1667e7a20c97ff59ed73ff6fbf4fb
GET /assets/images/homepage/wfic765_pg_1200x532.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "edb9-5b5fcbf910579"
last-modified: Thu, 26 Aug 2021 01:40:23 GMT
server: Akamai Image Manager
x-serial: 806
x-check-cacheable: YES
content-length: 57291
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/task-icon-maa-50x50.png
104.110.5.8200 OK 961 B URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/task-icon-maa-50x50.png
IP 104.110.5.8:0
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash 42e4dcdc55294e8408c0adff508c014f
bc44ba8696739f17864270d802638a7ebe369e09
42902bf802de1e0edd9d13d02216ec6fb579ebbdc9f8ce045cc1ad37a699e481
GET /assets/images/homepage/task-icon-maa-50x50.png HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "66b-5c978d2186326"
last-modified: Thu, 26 Aug 2021 01:32:08 GMT
server: Akamai Image Manager
content-length: 961
content-type: image/png
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/woman_checking_tablet_device.jpg
104.110.5.8200 OK 29 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/970x485/woman_checking_tablet_device.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 970x485, components 3\012- data
Hash 695e5d1f488e8b119c6c3345eabe68f0
766d45035fcbca948cec0d2069e0f5213ed8e409
d510b44eb432254133e3a77667c96ea0eee0a356614ef7938c0cab6b5d7fbcd9
GET /assets/images/photography/lifestyle/970x485/woman_checking_tablet_device.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "7cbf-5b1002fe7391c"
last-modified: Thu, 26 Aug 2021 01:32:10 GMT
server: Akamai Image Manager
x-serial: 1730
x-check-cacheable: YES
unused62: 8096267
content-length: 29069
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/6818104_gettyimages-890847206_489_234.jpg
104.110.5.8200 OK 15 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/6818104_gettyimages-890847206_489_234.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 489x234, components 3\012- data
Hash 22b4fda650e5f9f9827dc62c51ddde72
f2672e2b6e90fbeaf59ee216d318c9c9359cffd5
599e3c4b198d28b925b6eff10db70dcd5c9b44f3b0da091cdd35cc8245fe4b66
GET /assets/images/homepage/6818104_gettyimages-890847206_489_234.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "606ce813-7237"
last-modified: Tue, 28 Jun 2022 02:05:43 GMT
server: Akamai Image Manager
content-length: 14770
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/wfi111_ph_hre_default1_304x194.jpg
104.110.5.8200 OK 10 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/wfi111_ph_hre_default1_304x194.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 304x194, components 3\012- data
Hash 17b0f9e3d7cc001bf1938e304226707d
014f14e621ca07a8bfe64b8d103e751c72a8f503
2af5bcc0ab347f0e039ec86b4f0a5f2fb506ef539c284331b5e8e78f3f94badc
GET /assets/images/homepage/wfi111_ph_hre_default1_304x194.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "596d0956-2c51"
last-modified: Mon, 06 Dec 2021 02:32:22 GMT
server: Akamai Image Manager
x-serial: 1182
x-check-cacheable: YES
content-length: 10061
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/wfi111_ph_hre_default3_304x194.jpg
104.110.5.8200 OK 14 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/wfi111_ph_hre_default3_304x194.jpg
IP 104.110.5.8:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 304x194, components 3\012- data
Hash deeae45eaa7635c12dc302e4ea3806cc
4653da45da05578dbc29a10c496475d5775f74e7
34f5250710ce0ee2c5bdf5a5ff1a071a61b8c171b7f0ab96bf6deb935483a3d1
GET /assets/images/homepage/wfi111_ph_hre_default3_304x194.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3852-5548803b48180"
last-modified: Thu, 26 Aug 2021 01:32:33 GMT
server: Akamai Image Manager
content-length: 14418
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/photography/lifestyle/wells-fargo-volunteer-gardening_414x240.jpg
104.110.5.8200 OK 25 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/photography/lifestyle/wells-fargo-volunteer-gardening_414x240.jpg
IP 104.110.5.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 413x240, components 3\012- data
Hash fd4ff9a0b69ea2e7564ef15fad215cae
5e6a7918ac60e57b56f63b8452b6656cabc6b6c0
4519a61d26f153bd19bda2ffdca5d102c56d61f6f5ef6f29727ca878f6ea1947
GET /assets/images/photography/lifestyle/wells-fargo-volunteer-gardening_414x240.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "6b61-590dc93c63a80"
last-modified: Thu, 26 Aug 2021 01:41:38 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 25210
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www.pinu4564ps4t.ru/assets/images/global/s.gif?log=1&pid=222-147047-64&pageUrl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&cb=1667431437809&event=PageLoad&eventDescription=DisplayMarqueeCarouselItem&clist=84-146961-16~91-146911-32
103.153.182.185404 Not Found 315 B URL HTTP/1.1 www.pinu4564ps4t.ru/assets/images/global/s.gif?log=1&pid=222-147047-64&pageUrl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&cb=1667431437809&event=PageLoad&eventDescription=DisplayMarqueeCarouselItem&clist=84-146961-16~91-146911-32
IP 103.153.182.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /assets/images/global/s.gif?log=1&pid=222-147047-64&pageUrl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&cb=1667431437809&event=PageLoad&eventDescription=DisplayMarqueeCarouselItem&clist=84-146961-16~91-146911-32 HTTP/1.1
Host: www.pinu4564ps4t.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
Cookie: AMCV_1BAA15F354F731E60A4C98A4%40AdobeOrg=-1124106680%7CMCMID%7C83259019738990653724559007633900770687%7CMCAAMLH-1668023548%7C6%7CMCAAMB-1668023548%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C677917998%7CMCOPTOUT-1667425948s%7CNONE%7CvVersion%7C5.2.0; _ga=GA1.1.22271287.1667418749; _gid=GA1.1.1191612200.1667418749
HTTP/1.1 404 Not Found
Date: Wed, 02 Nov 2022 23:23:58 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www01.wellsfargomedia.com/assets/images/homepage/stagecoach-two-drivers-field-green-414x240.jpg
104.110.5.8200 OK 28 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/stagecoach-two-drivers-field-green-414x240.jpg
IP 104.110.5.8:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 414x240, components 3\012- data
Hash 7f0e3e5e4133007f74bc39594f8c3471
aa4ad52e8e419a7e29e982b311a2d9e4ba6b1a3d
96c235d6343aaa272187a96413ebbd8fa15417c7591c02cf0d79fee2e03dfbbe
GET /assets/images/homepage/stagecoach-two-drivers-field-green-414x240.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "6d98-5548803e24840"
last-modified: Thu, 26 Aug 2021 01:41:00 GMT
server: Akamai Image Manager
x-serial: 1161
x-check-cacheable: YES
content-length: 28056
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
static.wellsfargo.com/assets/js/wfui/appdynamics/adrum-ext.js
23.36.79.27200 OK 14 kB URL HTTP/1.1 static.wellsfargo.com/assets/js/wfui/appdynamics/adrum-ext.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (32088), with CRLF line terminators
Hash 3aebe41731e9656c48b87e8e8b2d1177
43369d1732f4ad8a5e7a1e9a3e133d96945afe02
6cf0cd136cefa8b4cce2da6ead22c33b83af4af3e87d7e4e9589b60f6ce4e395
GET /assets/js/wfui/appdynamics/adrum-ext.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 09 Mar 2021 18:36:55 GMT
Vary: Accept-Encoding
ETag: W/"6047c047-b11c"
Cache-Control: max-age=31536000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Content-Encoding: gzip
Content-Length: 14304
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=zsTfdqGr8nsaAMbxWB8kVA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
www01.wellsfargomedia.com/assets/images/homepage/redress_414x240.jpg
104.110.5.8200 OK 19 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/redress_414x240.jpg
IP 104.110.5.8:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 414x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 029d7823bd277819fbb52085b20b7935
0511366bbbf70266edd2036d0a29b169b29820ba
37822f946f1b79d00138a6e027d921492874dc7a79882dc5934277cccbd194b9
GET /assets/images/homepage/redress_414x240.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5c756893-7595"
last-modified: Sat, 04 Dec 2021 22:07:29 GMT
server: Akamai Image Manager
x-serial: 1071
x-check-cacheable: YES
content-length: 18586
content-type: image/webp
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/three-men-volunteer-house-414x240.jpg
104.110.5.8200 OK 24 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/three-men-volunteer-house-414x240.jpg
IP 104.110.5.8:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 414x240, components 3\012- data
Hash 00ef48d2553f9199f1a55645a2a2fb73
530a839844ababa70273cd6867a42fc2cf84ffe4
c550a26340fc6971f4767d351ae9c987603d3f5cf3cb18e91e3164d5fdca8be5
GET /assets/images/homepage/three-men-volunteer-house-414x240.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5eee-5548803e24840"
last-modified: Thu, 26 Aug 2021 01:32:08 GMT
server: Akamai Image Manager
x-serial: 1034
x-check-cacheable: YES
content-length: 24302
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www01.wellsfargomedia.com/assets/images/homepage/woman-sitting-chair-tablet-screenshot-414x240.jpg
104.110.5.8200 OK 12 kB URL HTTP/2 www01.wellsfargomedia.com/assets/images/homepage/woman-sitting-chair-tablet-screenshot-414x240.jpg
IP 104.110.5.8:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 414x240, components 3\012- data
Hash 7785db793f4b0ec285cd998da42d739c
2cbf945d053e086e9870a376ecc616d61713656b
3809cf83b36ac6b2f21dc1b73e22d2e594acf734d71e348dbd7f66ea38bfc658
GET /assets/images/homepage/woman-sitting-chair-tablet-screenshot-414x240.jpg HTTP/1.1
Host: www01.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "596d0959-2f6f"
last-modified: Sun, 26 Dec 2021 03:30:59 GMT
server: Akamai Image Manager
x-serial: 81
x-check-cacheable: YES
content-length: 12143
content-type: image/jpeg
cache-control: private, no-transform, max-age=15552000
expires: Mon, 01 May 2023 23:23:58 GMT
date: Wed, 02 Nov 2022 23:23:58 GMT
X-Firefox-Spdy: h2
www.pinu4564ps4t.ru/assets/images/global/s.gif?log=1&pid=222-147047-64&pageUrl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&cb=1667431437813&event=PageLoad&eventDescription=DisplayRibbonCarouselItem&clist=84-147031-16~91-146912-32
103.153.182.185404 Not Found 315 B URL HTTP/1.1 www.pinu4564ps4t.ru/assets/images/global/s.gif?log=1&pid=222-147047-64&pageUrl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&cb=1667431437813&event=PageLoad&eventDescription=DisplayRibbonCarouselItem&clist=84-147031-16~91-146912-32
IP 103.153.182.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /assets/images/global/s.gif?log=1&pid=222-147047-64&pageUrl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&cb=1667431437813&event=PageLoad&eventDescription=DisplayRibbonCarouselItem&clist=84-147031-16~91-146912-32 HTTP/1.1
Host: www.pinu4564ps4t.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/qwsa/smoth/kjfar.php
Cookie: AMCV_1BAA15F354F731E60A4C98A4%40AdobeOrg=-1124106680%7CMCMID%7C83259019738990653724559007633900770687%7CMCAAMLH-1668023548%7C6%7CMCAAMB-1668023548%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C677917998%7CMCOPTOUT-1667425948s%7CNONE%7CvVersion%7C5.2.0; _ga=GA1.1.22271287.1667418749; _gid=GA1.1.1191612200.1667418749
HTTP/1.1 404 Not Found
Date: Wed, 02 Nov 2022 23:23:58 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 332d2ebe9b4dbced72c517349aa34e04
5cf9d268f3f17259f619070e99e4348b67ed2fc1
a3d3e869659643cdbafe50d794f8719efc3cfc02846585ddeda0b913a882e16e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6033
Cache-Control: max-age=113009
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Etag: "6361faee-1d7"
Expires: Fri, 04 Nov 2022 06:47:27 GMT
Last-Modified: Wed, 02 Nov 2022 05:06:54 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 332d2ebe9b4dbced72c517349aa34e04
5cf9d268f3f17259f619070e99e4348b67ed2fc1
a3d3e869659643cdbafe50d794f8719efc3cfc02846585ddeda0b913a882e16e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5036
Cache-Control: max-age=112012
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Etag: "6361faee-1d7"
Expires: Fri, 04 Nov 2022 06:30:50 GMT
Last-Modified: Wed, 02 Nov 2022 05:06:54 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/stylesheets/wfui.cbc3f985065fa5be5a6e.chunk.css
23.36.79.24200 OK 37 kB URL HTTP/1.1 connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/stylesheets/wfui.cbc3f985065fa5be5a6e.chunk.css
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7c13f150789d64d7f93128102477d77b
4cda69da13d60c4ce46f36a42f786846a7484a22
32c68059f2b349eb1e3be3aac73129807d4fe70f5a86a2de6233bddf902a920a
GET /accounts/static/7M/accounts/public/stylesheets/wfui.cbc3f985065fa5be5a6e.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 37010
Last-Modified: Mon, 10 Oct 2022 07:35:32 GMT
Vary: Accept-Encoding
ETag: "6343cb44-9092"
Content-Encoding: gzip
Access-Control-Allow-Origin: https://www.wellsfargo.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET POST
Access-Control-Allow-Headers: User-Agent,Keep-Alive,Content-Type
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Allow: GET, POST, OPTIONS
Cache-Control: max-age=10368000
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=sWmuc3zS9s9bGzv8C51dwA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
23.36.79.27301 Moved Permanently 0 B URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/ga/gtag.js?t=UA-107148943-1 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: DCID=S3cdfruwToXBZJIOhWTu+Q%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
23.36.79.27301 Moved Permanently 0 B URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/ga/gtag.js?t=DC-2549153 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: DCID=0UqqKgSuIQ%2fOIvmbzkXw6A%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
23.36.79.27301 Moved Permanently 0 B URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/ga/gtag.js?t=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: DCID=cbIlHT4T+n1aP+oh9WL8Wg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1790179afa8a458763a406eeac38c0c3
c6fb052531d683e0128b7e4fe9a0de1fbc1eddf0
93325754a32452dddfe8fc1aa7d9f04f27689763c51d5cbb94f2753b54e1390c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 23:23:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 13:42:59 GMT
Expires: Wed, 09 Nov 2022 13:42:58 GMT
Etag: "c6fb052531d683e0128b7e4fe9a0de1fbc1eddf0"
Cache-Control: max-age=569339,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76409ef93844b4f1-OSL
connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/stylesheets/main.1cf952c0f491ea68bbcb.chunk.css
23.36.79.24200 OK 22 kB URL HTTP/1.1 connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/stylesheets/main.1cf952c0f491ea68bbcb.chunk.css
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 552a721cc80d5c43520bfc0f7e676a6d
bc0b9c8d241e1a9358bfbf573b7af72af5361a88
20d03b625f81f0641adf6ba55137ebb3824540d8a60be3a738f5bc24aba46b07
GET /accounts/static/7M/accounts/public/stylesheets/main.1cf952c0f491ea68bbcb.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 21452
Last-Modified: Mon, 10 Oct 2022 07:35:32 GMT
Vary: Accept-Encoding
ETag: "6343cb44-53cc"
Content-Encoding: gzip
Access-Control-Allow-Origin: https://www.wellsfargo.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET POST
Access-Control-Allow-Headers: User-Agent,Keep-Alive,Content-Type
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Allow: GET, POST, OPTIONS
Cache-Control: max-age=10368000
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=qJTXiZmg1PMLsjDouakOzg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
wellsfargobankna.demdex.net/event?d_dil_ver=9.5&_ts=1667431437888
52.30.140.233200 OK 325 B URL HTTP/1.1 wellsfargobankna.demdex.net/event?d_dil_ver=9.5&_ts=1667431437888
IP 52.30.140.233:0
File type JSON data\012- , ASCII text, with very long lines (555), with no line terminators
Hash d3149cb1a3d71dc8fabe05983e32f3d2
6b1ad9a81eaf65ea135f43c8a557d7589295f121
42ef56d486a97357c42f1e6474b6134dbc54f63833d75cdea9b8ad5e36d31a4b
POST /event?d_dil_ver=9.5&_ts=1667431437888 HTTP/1.1
Host: wellsfargobankna.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 405
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.pinu4564ps4t.ru
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-0e1f48b6d.edge-irl1.demdex.com 6 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=83244842579211228314560405490243301228; Max-Age=15552000; Expires=Mon, 01 May 2023 23:23:58 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: VXxot5y8RlY=
Content-Length: 325
Connection: keep-alive
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=1BAA15F354F731E60A4C98A4%40AdobeOrg&d_nsid=1&d_mid=83259019738990653724559007633900770687&d_coop_unsafe=1&d_blob=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&ts=1667431437884
34.253.119.106200 OK 319 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=1BAA15F354F731E60A4C98A4%40AdobeOrg&d_nsid=1&d_mid=83259019738990653724559007633900770687&d_coop_unsafe=1&d_blob=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&ts=1667431437884
IP 34.253.119.106:0
File type JSON data\012- , ASCII text, with very long lines (382), with no line terminators
Hash 2f80e6315769e769acb641cff79911e8
28a59915ad0a4aa1592aed9febe67b7d392323ca
63b33197532cb58196d06fad734e6f3c2f54bebeeadac7144716221ef1ab97be
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=1BAA15F354F731E60A4C98A4%40AdobeOrg&d_nsid=1&d_mid=83259019738990653724559007633900770687&d_coop_unsafe=1&d_blob=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&ts=1667431437884 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.pinu4564ps4t.ru
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-028e6f909.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=15066568481383579842415124025577856475; Max-Age=15552000; Expires=Mon, 01 May 2023 23:23:58 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: OIW8WSlYSw4=
Content-Length: 319
Connection: keep-alive
api.rlcdn.com/api/identity/idl?pid=1317
34.120.133.55451 Unavailable For Legal Reasons 0 B URL HTTP/2 api.rlcdn.com/api/identity/idl?pid=1317
IP 34.120.133.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/identity/idl?pid=1317 HTTP/1.1
Host: api.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 02 Nov 2022 23:23:58 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.wellsfargo.com/assets/js/wfui/appdynamics/adrum-ext.b4436be974de477658d4a93afb752165.js
23.36.79.27200 OK 16 kB URL HTTP/1.1 static.wellsfargo.com/assets/js/wfui/appdynamics/adrum-ext.b4436be974de477658d4a93afb752165.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (599)
Hash 18a9dcc7cee831010cf1647c8e39088a
731f39c30835414c6e165dd4687bf4071fe0eb10
1dc439a17ef08f995584c4869ccc397120b2502b57ba40240887df28e347be9b
GET /assets/js/wfui/appdynamics/adrum-ext.b4436be974de477658d4a93afb752165.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 03 Mar 2021 23:46:24 GMT
Vary: Accept-Encoding
ETag: W/"60401fd0-bbed"
Cache-Control: max-age=31536000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Content-Encoding: gzip
Content-Length: 15970
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Bsk+gDP6wuHr+1SQeLPkjg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/js/runtime.46b4a48b93fc091a9ec3.js
23.36.79.24200 OK 3.6 kB URL HTTP/1.1 connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/js/runtime.46b4a48b93fc091a9ec3.js
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7300), with no line terminators
Hash 4e465286f2760561180766374ed2cd79
bbab70295d66ac43d143e4e312129c869e549a1d
0d92fdeebe1141b900a97ce98ec2219e415001ba4142b63ce9202d0f434e73c3
GET /accounts/static/7M/accounts/public/js/runtime.46b4a48b93fc091a9ec3.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 10 Oct 2022 07:35:32 GMT
Vary: Accept-Encoding
ETag: W/"6343cb44-1c84"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET POST
Access-Control-Allow-Headers: User-Agent,Keep-Alive,Content-Type
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Allow: GET, POST, OPTIONS
Access-Control-Allow-Origin: connect.secure.wellsfargo.com
Cache-Control: max-age=10368000
Content-Encoding: gzip
Content-Length: 3646
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=cOfMpaXkfETBB79fNUm6bHQD20vF%2fBMthVDoUmCodNI%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:58 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
23.36.79.27200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65508)
Hash f0bce3a74e635ab88b299b1f625c99a4
345faf01029820b11abc73022ece8fb8e51cc321
faebd8dced2c15d37da85427c6e60aecb6a1a5f75e888280d447e93e64102c8e
GET /tracking/ga/gtag.js?t=DC-2549153 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.pinu4564ps4t.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-1ca73"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45086
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=BeileZ1wp%2f3EQKZNqbaRzg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
23.36.79.27200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65508)
Hash f0bce3a74e635ab88b299b1f625c99a4
345faf01029820b11abc73022ece8fb8e51cc321
faebd8dced2c15d37da85427c6e60aecb6a1a5f75e888280d447e93e64102c8e
GET /tracking/ga/gtag.js?t=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.pinu4564ps4t.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-1ca73"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45086
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=zjzRLxR0cOuXI%2f6Z919xZQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1790179afa8a458763a406eeac38c0c3
c6fb052531d683e0128b7e4fe9a0de1fbc1eddf0
93325754a32452dddfe8fc1aa7d9f04f27689763c51d5cbb94f2753b54e1390c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 23:23:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 13:42:59 GMT
Expires: Wed, 09 Nov 2022 13:42:58 GMT
Etag: "c6fb052531d683e0128b7e4fe9a0de1fbc1eddf0"
Cache-Control: max-age=569339,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76409ef9f8e8b4f1-OSL
static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
23.36.79.27200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65508)
Hash f0bce3a74e635ab88b299b1f625c99a4
345faf01029820b11abc73022ece8fb8e51cc321
faebd8dced2c15d37da85427c6e60aecb6a1a5f75e888280d447e93e64102c8e
GET /tracking/ga/gtag.js?t=UA-107148943-1 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.pinu4564ps4t.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-1ca73"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45086
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=les2LG21KsIAocaPIuf2KA%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/ga_conversion_async.js
23.36.79.27200 OK 14 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/ga_conversion_async.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (35846)
Hash 42c817a7b5f9583b2bc70f742dc950c9
ff75711716f8605860abe551b0235f7194e4348e
881b430ac699f32b3b5234582494d1f4fc0d22be1e6ac797847d66bc5ebc250f
GET /tracking/ga/ga_conversion_async.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-8c31"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 13593
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Lp94h%2fTEW63Wb7Aj%2f35+8Q%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
2549153.fls.doubleclick.net/activityi;src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php?
142.250.74.70200 OK 435 B URL HTTP/1.1 2549153.fls.doubleclick.net/activityi;src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (551), with no line terminators
Hash 3ff47bba53a020a56dee70ec48406c04
bc4bd72d65914f665a4f3a498aa1ab9d0ec7331d
22eab70ff735165238e629eeefa3dde83945b90306587f3b6a5d9fd125d6ce87
GET /activityi;src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php? HTTP/1.1
Host: 2549153.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Wed, 02 Nov 2022 23:23:58 GMT
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Strict-Transport-Security: max-age=21600
Content-Type: text/html; charset=UTF-8
Pragma: no-cache
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 435
X-XSS-Protection: 0
static.wellsfargo.com/tracking/ga/ga.js
23.36.79.27200 OK 20 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/ga.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (49163)
Hash d76c07f3794667edfb1c8ac0df3aac66
23e1915175dad06223c692b49c7b3c2aad1a5820
e0a246ff71144016a26e53493b8275a3a02b9386c690a169801840072851136b
GET /tracking/ga/ga.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-c025"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 19477
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=YgwtHQoJ%2f8yFIT3p0yh16Q%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/ec.js
23.36.79.27200 OK 1.3 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/ec.js
IP 23.36.79.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2771)
Hash 8a1d22ba0de1104dcdc02a582b407ed2
e4d90fd13a73c7379c46b197ded523a5d33c69b9
4a44a1a7efd65360f31e0b1842ad06b7fedc7c0373c69c0077c696cd49cc35de
GET /tracking/ga/ec.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-aed"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1313
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=kJhcemgbiNNYKWvOhE+Sig%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/AIDO/vyHb?d=ZW5jZEBKbFlTVFJ0cVhlWGN0cjdpMVluN2svc2dmTXJwbDlUSm4zMTJQSWZ2SmpFbmFQa1BvRW5UNm42ZFlZamtISzMvYWQvSVpYeFo3aGpjMDhVdGpHYmZ5VWVJU2JNbCtOZFdXZXlVM0tzN2dFRERJQTNuNUQ3Ym04Z1h0UGRZNlJ2cWlweW5xU3hKdFlDbkI0aU93TS80VVhLZG5pNlZOTWtmcHp3czNGNHVxY2Q1aTdkQjc5QkNGazRxd21MSjBjYUNtWG1mNWZITXR6MExrYng3N0loa28xUDJwcXFyVGlIdzJXRStLSzlmc0xYQWxrUXdVc2JnVFBCNzhSdWRpekxiSXJwZWI3NHV1Z1lsLytOdjRlRFgyL2J5dURtOFAzQ2w1QT09fDE3YTI5Y2FjMWNmYzZhYzNhYWMxNWVkNTlmMjU0YzhjNmQxNzI4YTdlODkyMzEyYjNlNGUzYmYxODVkNDJiODRhZTk0ZDEwMWIyYjhkNjMyZGQ4MzUwMWZkMDEzNTEzYTQxNDg0NzU4NjM5Njg2NDA5MDYxYjliMmUyMjM2ZjdhZjY5Y2VkYzY2YTM2MzJhNDdjMjRmMjQ5MzNjNTRkZmM5NjZjNGFmOTJhMDM2YThhNDk0OGNkM2ZlYmFkN2U4YWQwYjdhYThmMzEyZDBjNTQ2MjAyNGM0ZjU4NTU0ZDI0YjI3ZWE3MmMwMTRjZDRlZWI2NjhkZDNkMTFhYjg1NzM1OTBjODUyOWVhNzcxOGRmODQ0N2M3NGUxZDQ1MGUxODFkZTRiZmFhYjc4YmFjNGRlMTFlNjllZjk2ZGQ2ODFhZjc3OTJlNjk5ZmU2ZWRiMzQyY2ZjMjgyYzgwODEyYmYwODAyZmI2ZGVhYjUwY2Q3ZWEyMGU1ODM3OGFhZWNhYjRkZmYzMjQyNzk1ZjI4ZmJkYmM0MjVlNjIyYjY2ZjViZDgwYzUzNWE4MzJhNGY2NDA5ZWJkODNiYmFlNzAyNWQyOWMwZjJmMmQyODAzYWZjMzg1ZmM0NGU4YmFlNDJmNjkwMGQyYTQxMmUzODc1Njg1NWU4NDU0YjhjYTk5ZDgyfDAwZWUwYjYyZWNhYWM4OWY%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fwww.pinu4564ps4t.ru&t=jsonp&c=btc_irpevkloidvz&eu=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php
23.36.79.24200 OK 90 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fwww.pinu4564ps4t.ru&t=jsonp&c=btc_irpevkloidvz&eu=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash fcd7c9649b48af44a6057c7eda7d4a40
d84985031855ae6837d127127fd8334933d5c75f
0ee82f030af19e913c0577c6800446e77b3f1b56e72068cd278217f90e2e3f42
GET /AIDO/vyHb?d=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%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fwww.pinu4564ps4t.ru&t=jsonp&c=btc_irpevkloidvz&eu=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 90
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=2aYU2Mxp68RIKB3uzbwQrv5939s9QXD8Y31YCpLBAPg%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:58 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 741bd3f1ae63760ab46ae978e338cd68
fb7076b807574a5228038c0125031ac90714bbb3
539c6d94af9de8dc4d472e7df8f6c0fce915a9f741de985776f127852d20fbbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php
142.250.74.98200 OK 434 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550), with no line terminators
Hash dcf1a4aaede015eed3b8dde1ee96d4d1
ed0c718018867632724e35053ee7f4a41001bbcf
f80df9ec3139652481ca9da02990c511488b7ba8e84a7f77ec68c23d0dfeafeb
GET /ddm/fls/i/src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://2549153.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 23:23:58 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 434
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j92&aip=1&a=2138553986&t=pageview&_s=1&dl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&ul=en-us&de=UTF-8&dt=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=wCCACUALBAAAAC~&jid=26735759&gjid=1150294919&cid=22271287.1667418749&tid=UA-107148943-1&_gid=1191612200.1667418749&_r=1&cd1=WWW&cd4=y&cd5=BOB&cd7=DESKTOP&cd8=PRODUCTION&cd9=45202110060855191200791075&cd12=BROWSER&cd22=top-pages&cd23=4.48.0>m=2ou8g0&cd35=22271287.1667418749&z=114646892
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j92&aip=1&a=2138553986&t=pageview&_s=1&dl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&ul=en-us&de=UTF-8&dt=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=wCCACUALBAAAAC~&jid=26735759&gjid=1150294919&cid=22271287.1667418749&tid=UA-107148943-1&_gid=1191612200.1667418749&_r=1&cd1=WWW&cd4=y&cd5=BOB&cd7=DESKTOP&cd8=PRODUCTION&cd9=45202110060855191200791075&cd12=BROWSER&cd22=top-pages&cd23=4.48.0>m=2ou8g0&cd35=22271287.1667418749&z=114646892
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j92&aip=1&a=2138553986&t=pageview&_s=1&dl=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&ul=en-us&de=UTF-8&dt=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=wCCACUALBAAAAC~&jid=26735759&gjid=1150294919&cid=22271287.1667418749&tid=UA-107148943-1&_gid=1191612200.1667418749&_r=1&cd1=WWW&cd4=y&cd5=BOB&cd7=DESKTOP&cd8=PRODUCTION&cd9=45202110060855191200791075&cd12=BROWSER&cd22=top-pages&cd23=4.48.0>m=2ou8g0&cd35=22271287.1667418749&z=114646892 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.pinu4564ps4t.ru
date: Wed, 02 Nov 2022 23:23:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 741bd3f1ae63760ab46ae978e338cd68
fb7076b807574a5228038c0125031ac90714bbb3
539c6d94af9de8dc4d472e7df8f6c0fce915a9f741de985776f127852d20fbbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0e939ec3a78e19c59e6295801cbd39e7
368b2454444f11d9079cb77c0f41f5f734562523
d24788aa7c2330dee96ae20babb352233912036d05edaf2f3918873a0805561b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&gjid=1150294919&_gid=1191612200.1667418749&_u=wCCACUAKBAAAAC~&z=154243742
173.194.221.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&gjid=1150294919&_gid=1191612200.1667418749&_u=wCCACUAKBAAAAC~&z=154243742
IP 173.194.221.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&gjid=1150294919&_gid=1191612200.1667418749&_u=wCCACUAKBAAAAC~&z=154243742 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.pinu4564ps4t.ru
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 02 Nov 2022 23:23:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php
142.250.74.34200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=2549153;type=allv40;cat=all_a00;ord=6884259686023;gtm=2od8g0;u1=45202110060855191200791075;u5=y;u6=BOB;u8=WWW;u11=PRODUCTION;u19=GA1.1.22271287.1667418749;u23=DESKTOP;~oref=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 23:23:58 GMT
expires: Wed, 02 Nov 2022 23:23:58 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0e939ec3a78e19c59e6295801cbd39e7
368b2454444f11d9079cb77c0f41f5f734562523
d24788aa7c2330dee96ae20babb352233912036d05edaf2f3918873a0805561b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rubicon.wellsfargo.com/glassbox/reporting/0C458F45-AC71-02CE-34D8-401C8A313B38/cls_report?_cls_s=0f0beec7-e99c-49e6-8aa9-3fb9136af043%3A0&_cls_v=ac320e48-a3a5-4691-b660-d51eba1da883&pv=2&f_cls_s=true
23.36.79.9200 OK 76 B URL HTTP/1.1 rubicon.wellsfargo.com/glassbox/reporting/0C458F45-AC71-02CE-34D8-401C8A313B38/cls_report?_cls_s=0f0beec7-e99c-49e6-8aa9-3fb9136af043%3A0&_cls_v=ac320e48-a3a5-4691-b660-d51eba1da883&pv=2&f_cls_s=true
IP 23.36.79.9:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 5d9cadb47d2bf37187cfed2e3476008c
95945e8fc4fc8e653a0b527b1dd46bc6ffef6b0a
6b50db6c97924340d351d900a66fcd5d649120dc42560517329f910d46deda06
GET /glassbox/reporting/0C458F45-AC71-02CE-34D8-401C8A313B38/cls_report?_cls_s=0f0beec7-e99c-49e6-8aa9-3fb9136af043%3A0&_cls_v=ac320e48-a3a5-4691-b660-d51eba1da883&pv=2&f_cls_s=true HTTP/1.1
Host: rubicon.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Access-Control-Allow-Origin: http://www.pinu4564ps4t.ru
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Content-Length: 76
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Vary: origin, Accept-Encoding
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: _cls_s=0f0beec7-e99c-49e6-8aa9-3fb9136af043:0; Secure; SameSite=None;HttpOnly;Secure
_cls_v=ac320e48-a3a5-4691-b660-d51eba1da883; Secure; SameSite=None;HttpOnly;Secure
ROUTEID=.cligate1; path=/;HttpOnly;Secure
ISD_GB_COOKIE=!+rfpv1Az3hKRk0DNm6glvWWF2ZIYlSEzfOHu6o2qj8pubQK+bgG7mQwgXV/soCwAQ2PoIFGwNIGf2A==; path=/; Httponly; Secure
DCID=DigSuG3QwtlCttYViWXS4kOzUnr89XoKaur3TzYJjq8PVoZKEhX307y7uYyYFiPx; Domain=rubicon.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:58 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 63a18761b3f077fb645fd368b7087649
832aab6dd0e86700c9adf5e248cd7ec9353533e5
e6d77c53b9b6bd8fc0323041681d636f6a4593f3b404639767637899f83453d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6d267d19e6d29bfc7b659be56a7dd7df
5ba0d4aac25efebb7f1295114cd6ff19fb7e41ad
c2b42dfa2f565cd2642d4d37f7fe7d0c942f964a132436c0cbbff117a6775ce4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3592
Cache-Control: max-age=147636
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:59 GMT
Etag: "63628bbb-1d7"
Expires: Fri, 04 Nov 2022 16:24:35 GMT
Last-Modified: Wed, 02 Nov 2022 15:24:43 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e22dfe51ab9c940bb579430ed3b78a4
ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b
0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d104b70bf03bbef04277daf71d9e99b0
3fee377f3d3c3b36a50b40e989a55d137c565952
7964cc47620e464da24a4263b3b22832710cc4cd746ea463553e1d634d15b8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/984436569/?random=1667431438386&cv=9&fst=1667431438386&num=1&fmt=3&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&hn=www.google.com&async=1
142.250.74.66302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/984436569/?random=1667431438386&cv=9&fst=1667431438386&num=1&fmt=3&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&hn=www.google.com&async=1
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/984436569/?random=1667431438386&cv=9&fst=1667431438386&num=1&fmt=3&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&hn=www.google.com&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 23:23:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 02-Nov-2022 23:38:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&_u=wCCACUAKBAAAAC~&z=15212271
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&_u=wCCACUAKBAAAAC~&z=15212271
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&_u=wCCACUAKBAAAAC~&z=15212271 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 23:23:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&_u=wCCACUAKBAAAAC~&z=15212271
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&_u=wCCACUAKBAAAAC~&z=15212271
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j92&tid=UA-107148943-1&cid=22271287.1667418749&jid=26735759&_u=wCCACUAKBAAAAC~&z=15212271 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 23:23:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.pinu4564ps4t.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 23:23:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/984436569/?random=1667431438386&cv=9&fst=1667430000000&num=1&fmt=3&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa8g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fwww.pinu4564ps4t.ru%2Fqwsa%2Fsmoth%2Fkjfar.php&tiba=Wells%20Fargo%20%E2%80%93%20Banking%2C%20Credit%20Cards%2C%20Loans%2C%20Mortgages%20%26%20More&async=1&is_vtc=1&random=2932158493&resp=GooglemKTybQhCsO&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.pinu4564ps4t.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 23:23:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d104b70bf03bbef04277daf71d9e99b0
3fee377f3d3c3b36a50b40e989a55d137c565952
7964cc47620e464da24a4263b3b22832710cc4cd746ea463553e1d634d15b8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 23:23:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/js/vendor.5f4f2f240ab8b1537fb5.chunk.js
23.36.79.24200 OK 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/js/vendor.5f4f2f240ab8b1537fb5.chunk.js
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
GET /accounts/static/7M/accounts/public/js/vendor.5f4f2f240ab8b1537fb5.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 349645
Last-Modified: Mon, 10 Oct 2022 07:35:32 GMT
Vary: Accept-Encoding
ETag: "6343cb44-555cd"
Content-Encoding: gzip
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET POST
Access-Control-Allow-Headers: User-Agent,Keep-Alive,Content-Type
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Allow: GET, POST, OPTIONS
Access-Control-Allow-Origin: connect.secure.wellsfargo.com
Cache-Control: max-age=10368000
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=nI51kU4JKE88TSUZA02jIHhY0gqgrH1oVsw2nsMUa3I9BEThTWTAelykexIMyOzZ; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:58 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/js/wfui.90f03c36c03268998a70.chunk.js
23.36.79.24200 OK 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/accounts/static/7M/accounts/public/js/wfui.90f03c36c03268998a70.chunk.js
IP 23.36.79.24:0
ASN #20940 Akamai International B.V.
GET /accounts/static/7M/accounts/public/js/wfui.90f03c36c03268998a70.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 308951
Last-Modified: Mon, 10 Oct 2022 07:35:32 GMT
Vary: Accept-Encoding
ETag: "6343cb44-4b6d7"
Content-Encoding: gzip
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET POST
Access-Control-Allow-Headers: User-Agent,Keep-Alive,Content-Type
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Allow: GET, POST, OPTIONS
Access-Control-Allow-Origin: connect.secure.wellsfargo.com
Cache-Control: max-age=10368000
Date: Wed, 02 Nov 2022 23:23:58 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=xYU3nYdMFMVwN%2fLIzvZED+wnc6nzdLBP1GDaqd0ibrM9wh8KKxk9Dtv2Irc3fmmM; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Wed, 02 Nov 2022 23:38:58 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
pdx-col.eum-appdynamics.com/eumcollector/error.gif?version=1&appKey=EUM-AAB-AYP&msg=Assert%20fail%3A%20M51
52.26.185.122200 OK 0 B URL HTTP/2 pdx-col.eum-appdynamics.com/eumcollector/error.gif?version=1&appKey=EUM-AAB-AYP&msg=Assert%20fail%3A%20M51
IP 52.26.185.122:0
GET /eumcollector/error.gif?version=1&appKey=EUM-AAB-AYP&msg=Assert%20fail%3A%20M51 HTTP/1.1
Host: pdx-col.eum-appdynamics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 23:23:59 GMT
content-type: image/gif
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, s-maxage=0
expires: 0
pragma: no-cache
vary: *
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept
x-envoy-upstream-service-time: 0
server: envoy
X-Firefox-Spdy: h2
pdx-col.eum-appdynamics.com/eumcollector/beacons/browser/v1/EUM-AAB-AYP/adrum
52.26.185.122200 OK 0 B URL HTTP/2 pdx-col.eum-appdynamics.com/eumcollector/beacons/browser/v1/EUM-AAB-AYP/adrum
IP 52.26.185.122:0
POST /eumcollector/beacons/browser/v1/EUM-AAB-AYP/adrum HTTP/1.1
Host: pdx-col.eum-appdynamics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 11170
Origin: http://www.pinu4564ps4t.ru
Connection: keep-alive
Referer: http://www.pinu4564ps4t.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 23:23:59 GMT
content-type: text/html
expires: 0
set-cookie: ADRUM_BTa=R:27|g:c9789676-cdc5-4016-9d82-6a37571b00e8;Path=/;Expires=Wed, 02-Nov-2022 23:24:29 GMT;Max-Age=30
ADRUM_BTa=R:27|g:c9789676-cdc5-4016-9d82-6a37571b00e8|n:appdynamics_eee1d4f8-67a2-498e-a725-47e29803822e;Path=/;Expires=Wed, 02-Nov-2022 23:24:29 GMT;Max-Age=30
SameSite=None;Path=/;Expires=Wed, 02-Nov-2022 23:24:29 GMT;Max-Age=30;Secure
ADRUM_BT1=R:27|i:559461;Path=/;Expires=Wed, 02-Nov-2022 23:24:29 GMT;Max-Age=30
ADRUM_BT1=R:27|i:559461|e:3;Path=/;Expires=Wed, 02-Nov-2022 23:24:29 GMT;Max-Age=30
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, s-maxage=0
pragma: no-cache
vary: *
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept
server: envoy
X-Firefox-Spdy: h2