r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5797
Expires: Wed, 29 Mar 2023 04:08:27 GMT
Date: Wed, 29 Mar 2023 02:31:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 911d74784325663a0d95b463b0e9ae9b
21e999229be584d8e42696bce71236ad5bcb9a25
f48cbe4d605e660a45267400e0add4f7bc7cd523c450376ecd8e3a7f094abf56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8488
Expires: Wed, 29 Mar 2023 04:53:18 GMT
Date: Wed, 29 Mar 2023 02:31:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2908
Expires: Wed, 29 Mar 2023 03:20:18 GMT
Date: Wed, 29 Mar 2023 02:31:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 02:15:53 GMT
content-type: application/json
age: 957
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pqMpVOLKTo88hwx1fPzm+5IeiUHkLC3ZnMA2C1sCs72La9PGk1jyX5ysfTbydDl0Gug7x9VDWBw=
x-amz-request-id: KJCKQDPT5QZ7EQGM
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 01:56:27 GMT
age: 2123
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:31:50 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a3242c27d5e1454c4ed0224a21b99fde
d14f94d30b766f1e11284fb333529903e116718c
e9f38284fdd9e5d9c19f16fe29db0d58bc68bd71c35aebfbcb80580417feefae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9F38284FDD9E5D9C19F16FE29DB0D58BC68BD71C35AEBFBCB80580417FEEFAE"
Last-Modified: Sun, 26 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8171
Expires: Wed, 29 Mar 2023 04:48:01 GMT
Date: Wed, 29 Mar 2023 02:31:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, ETag, Expires, Alert, Pragma, Content-Type, Retry-After, Last-Modified, Content-Length, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 02:17:26 GMT
age: 864
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ilab-nosweatdebt-demo.azurewebsites.net/Login.html
52.177.169.150200 OK 5.9 kB URL HTTP/1.1 ilab-nosweatdebt-demo.azurewebsites.net/Login.html
IP 52.177.169.150:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (877)
Hash 76d0823b6b628de3a097e7969f477efc
bb738226d7b6776c13ef8113e2fbfef81cfef655
867644cf25f47e62e3d875e31369f6499ea8fb87adba82f28b99f2538805aead
Analyzer Verdict Alert openphish The PNC Financial Services Group, Inc.
GET /Login.html HTTP/1.1
Host: ilab-nosweatdebt-demo.azurewebsites.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Length: 5889
Content-Type: text/html
Date: Wed, 29 Mar 2023 02:31:50 GMT
Server: Apache
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "490e-55ab9a1d39180-gzip"
Last-Modified: Wed, 04 Oct 2017 14:43:34 GMT
Set-Cookie: ARRAffinity=e049fddcb4ea700e32c951d21abdd0102d8a9eb274476afeaf598503b12c5404;Path=/;HttpOnly;Secure;Domain=ilab-nosweatdebt-demo.azurewebsites.net
ARRAffinitySameSite=e049fddcb4ea700e32c951d21abdd0102d8a9eb274476afeaf598503b12c5404;Path=/;HttpOnly;SameSite=None;Secure;Domain=ilab-nosweatdebt-demo.azurewebsites.net
Vary: Accept-Encoding
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lDAl3kRBDfN6xiBgSNl8SQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2THfafv7Sl+mK9J5Xftz72tq0YU=
Date: Wed, 29 Mar 2023 02:31:50 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
assets.adobedtm.com/1d90950c926aacaf003e1e8e48aeb1189d4d7901/satelliteLib-0b251a2d8c6b59ad98d7c1a62afb37e675ae06bc.js
2.18.172.233200 OK 103 kB URL HTTP/2 assets.adobedtm.com/1d90950c926aacaf003e1e8e48aeb1189d4d7901/satelliteLib-0b251a2d8c6b59ad98d7c1a62afb37e675ae06bc.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (32743)
Size 103 kB (103191 bytes)
Hash a9eebfe54525e21808a058dea1829c48
54f4f2d28958bd6338b815589a040b3c05da132b
204fc910df4b1db8a67a311ae6c1ad09da686d23871d9a2be03a3128a5f089a4
GET /1d90950c926aacaf003e1e8e48aeb1189d4d7901/satelliteLib-0b251a2d8c6b59ad98d7c1a62afb37e675ae06bc.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "8160ba3490a3b1e3d84f55a150fdb221:1678332600.365576"
last-modified: Thu, 09 Mar 2023 03:30:00 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 103191
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:31:50 GMT
date: Wed, 29 Mar 2023 02:31:50 GMT
access-control-allow-origin: https://ilab-nosweatdebt-demo.azurewebsites.net
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 30237788aa25da0ddd03b8610902f531
8cf015ae7c7071f268bf141334fe921bd5399268
deb653d5f19732ea45d8106798ff38b71a726bb48f942a37e4ad36cee16fd508
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 02:32:16 GMT
Expires: Tue, 04 Apr 2023 02:32:15 GMT
Etag: "8cf015ae7c7071f268bf141334fe921bd5399268"
Cache-Control: max-age=517823,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af4b2f0ab831bfa-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 30237788aa25da0ddd03b8610902f531
8cf015ae7c7071f268bf141334fe921bd5399268
deb653d5f19732ea45d8106798ff38b71a726bb48f942a37e4ad36cee16fd508
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 02:32:16 GMT
Expires: Tue, 04 Apr 2023 02:32:15 GMT
Etag: "8cf015ae7c7071f268bf141334fe921bd5399268"
Cache-Control: max-age=517823,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af4b2f0bee4b4ed-OSL
www.onlinebanking.pnc.com/Images2/wrapper/lock.png
104.110.20.120200 OK 228 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/wrapper/lock.png
IP 104.110.20.120:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 20x20, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d1ea0ef3cb8eb12f66ae90cf2b4fb5cb
7f14e7a24dfd6d1da428675667e6e94fe9fa1c45
a573cba74a0593edbbc189008c9432e4d713627233a061d2465920a915d419df
GET /Images2/wrapper/lock.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 19 Feb 2023 02:23:10 GMT
server: Akamai Image Manager
content-length: 228
content-type: image/webp
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841327_53_7899_3_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/LiveEngage/LiveChat.js
104.110.20.120200 OK 6.2 kB URL HTTP/2 www.onlinebanking.pnc.com/LiveEngage/LiveChat.js
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Hash 0399b96851ff708980d1c6e633acb423
9daab7f6c45b4d1f2ef22058176219070e4e8bd0
7add2fae40f423cb8431ab0ac64a60f5fdc43314163b9e592cc1afd146926b28
GET /LiveEngage/LiveChat.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 6232
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_71_sn_96EAB4B1F4F36B9F01A4461DFC991B56_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!8LP/8NvNt7v9eVNrrGCShuzXWlQZEiQsSYvZQVv1lsZkXWTEZfjLN7yPMx/ENkieNd2MZBqI/rDYHhg=; path=/; Httponly
TLTSID=C68DF46D3AC87E695E319B9FF42E9FD7; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=06B61DF7FF74839DD66AE77A323D7DE1; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841319_12504_6658_3_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/PNC/Modules/ajax/ajax.js
104.110.20.120200 OK 2.9 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/PNC/Modules/ajax/ajax.js
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Hash eb2e2d0762277a377e04edd082cc9c38
3ca5b1560631104c3cdce79ee2dc903afb811956
e036b9dd5dc8ceb87b2498238b3c4769dc32e6b1dfdf36b92735f36f553b7436
GET /JavaScriptLib/PNC/Modules/ajax/ajax.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 2851
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_66_sn_2BFBA34FF0434F805CD1B0B3D1C0C1A6_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!SDkKubj/OX9v5dhrrGCShuzXWlQZEirZQEsBQmtdVA1JxFdXFyvJMznp4AE460lbxPdkwJcCTAMzZxI=; path=/; Httponly
TLTSID=FC3531F1589F6AD3137EA70BA039C562; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=F169120CB72744A4C95BB1CF1A9B0F37; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841320_14083_6637_3_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/LiveEngage/LiveEngage.js
104.110.20.120200 OK 7.6 kB URL HTTP/2 www.onlinebanking.pnc.com/LiveEngage/LiveEngage.js
IP 104.110.20.120:0
File type ASCII text, with very long lines (1911), with CRLF line terminators
Hash c6b5965f26b6673bfdc0313b44e96224
e347fb1b73716927b96c8175a9a051dbeee42d78
c490428a2d00dae348b4ebca2fa510515f28d37b072118672d0e1c4ded862493
GET /LiveEngage/LiveEngage.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 7599
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_69_sn_88098E85F3A107B18D69D235B5CAFC76_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!QL8yHdDtsopKAXFrrGCShuzXWlQZEgSN+He8dBQchpfhzR6h0vENaFe2kKn5b0rVoq+nEX4TQm97NYI=; path=/; Httponly
TLTSID=8535D59B7C5A7CA518CDED613A1C0C02; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=8DC5AF19761A903BCAC51FA571BBB26C; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841318_14388_6634_4_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/animation/animation-min.js
104.110.20.120200 OK 14 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/animation/animation-min.js
IP 104.110.20.120:0
File type ASCII text, with very long lines (6004), with CRLF line terminators
Hash fe8afb83b528dd12a1a79676821248c7
32007810392024eec5aab05617a5a709082ee456
aa90f29ba38c46d08b64fe09f912521da3a9eb6a468df63c88a279bc63683462
GET /JavaScriptLib/dynamicjs/build/animation/animation-min.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 13705
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_64_sn_EFA9A2928D403476ECAAE1EBDBC86842_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!WZx8faC+LS9CeCRrrGCShuzXWlQZEqr7MO1YSzSk0bUmPS+mwzaE7ebWJkAsjrjHKu3uynCvBIP54FE=; path=/; Httponly
TLTSID=0026EAFAED7722F2D569966F6724D73D; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=8E65C405287BD0C079AC053492F88654; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841332_14393_7136_3_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/css3/kendo/kendo.PNC-Custom.css
104.110.20.120200 OK 4.7 kB URL HTTP/2 www.onlinebanking.pnc.com/css3/kendo/kendo.PNC-Custom.css
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Hash e1b9bd31cf35c61a0c41b87c786d64b4
4aaadc81021533dcc4fcb802bc825c44ef993aaf
472803721e47c37df593408ff46653624ac6ddf0fc1a6c041cb847ed135733b4
GET /css3/kendo/kendo.PNC-Custom.css HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-type: text/css
content-language: en-US
vary: Origin, Accept-Encoding
content-encoding: gzip
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
content-length: 4726
set-cookie: dtCookie=v_4_srv_70_sn_32DF5384F4B813CC2C46E33EF070AC7A_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!8U7Mbd8IsRLqtsprrGCShuzXWlQZEnnU2J7ocLbDpfIGpjN3XNh+VlTuYHWpa8Tg1JdbaWjihKN3Y9k=; path=/; Httponly
TLTSID=81102F84350CAB8F165C72C2663838C1; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=00F1B9F46347561139864ED0F1F9B3F5; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841321_14551_6574_2_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/connection/connection.js
104.110.20.120200 OK 40 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/connection/connection.js
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Hash a50db1d1365287ca99227369064bf828
b86299c827b04e357bd1b2f563844fadace37e3d
5f26e1cea77a80281ba47cb7deca973d2d4ffb42c6b56924786e7f334a8480a6
GET /JavaScriptLib/dynamicjs/build/connection/connection.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 39472
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_64_sn_9B05F70F32619EBFC7F51C9EA52F57FE_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!/nMf+IwW8pbrvVhrrGCShuzXWlQZEs/WcEjqCzbOjmertZu7tsZZrPTg0izKOrYVDwhhN7m0XnnC4MQ=; path=/; Httponly
TLTSID=EE7DF83D47E3BF4E6480DB17557D7D10; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=52619F94BB2588EF782312E388C1CD6B; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841328_15698_7172_0_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/element/element-min.js
104.110.20.120200 OK 9.0 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/element/element-min.js
IP 104.110.20.120:0
File type ASCII text, with very long lines (6032), with CRLF line terminators
Hash 81984035296b4f0dabfbd133174d4bd8
f606eaf9fbff3323c5ed8ab002215826035a100c
aa46841685c4e8fa95f0dc7f977ae7e72961b544d93303cc8f25dbd1dd837a56
GET /JavaScriptLib/dynamicjs/build/element/element-min.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 8961
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_66_sn_CCFF12DD556A012003CD4B9AB53448D7_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!ibylLq/YyVZRxy5rrGCShuzXWlQZEgFzkG86X5KC5+Ppd75qe5VhH8hy0M7iNHgLT151tOEvoL0GHp4=; path=/; Httponly
TLTSID=68FDCC7D1B73760F7B59112379421D89; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=05F0DDE902458A92F33789ABD1849965; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841330_16807_7174_0_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/yuiloader/yuiloader-min.js
104.110.20.120200 OK 61 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/yuiloader/yuiloader-min.js
IP 104.110.20.120:0
File type ASCII text, with very long lines (6064), with CRLF line terminators
Hash f3c81a72f63b0dc3b527d607f695a85a
b3e11d416100791f6e22d78ee7147cd47317cb6b
4a0b09e1ac2522dfe4bc1b8cdf480efdb58f30cdd710dae9eee0920e7d40f158
GET /JavaScriptLib/dynamicjs/build/yuiloader/yuiloader-min.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 61360
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_71_sn_55E8EBCC41D557B911824965173F6174_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!3+3yNr/pSG7PzG5rrGCShuzXWlQZEtTyBOEs0GXVPgNqHw0UAFOQJdgt6LeEG8I57tmpl7l+FNM9dRk=; path=/; Httponly
TLTSID=307EC0ADC96AACB6AA991388C7DB0E3A; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=45319D0117902BE0349E380CF7CA9F09; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841331_15678_7124_0_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/dragdrop/dragdrop.js
104.110.20.120200 OK 127 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/dragdrop/dragdrop.js
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Size 127 kB (127356 bytes)
Hash a049a2b82c09e3b768ba6166ec80ec3f
eb0104df9c3a69eeb98791dd145caa3b21a0227d
1974fc7e2b15979ebdea6daf2ef3fe33bd3ec03a414b1af4f07ce7e0fa6c06ad
GET /JavaScriptLib/dynamicjs/build/dragdrop/dragdrop.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 127356
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_56_sn_7B363C468EC1D40A21C94A165401E63F_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!mmbWwBq3HH2296prrGCShuzXWlQZEpXOy4QmOBJkL9qxFBCdWxiQmeg+5KSGUqC8K3YaODdAigg9STo=; path=/; Httponly
TLTSID=A2D9E8F261EB43948B1AAAB80B225DD8; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=CE2D9CED856E5CF9BB5C4FD9B89245C4; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841316_15714_8775_2_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/CoBrowse/coBrowse.css
104.110.20.120200 OK 1.9 kB URL HTTP/2 www.onlinebanking.pnc.com/CoBrowse/coBrowse.css
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Hash 63f04484ad209e6e6fe378d2f63dfc16
fd75805f967e229d518bf323cf37d536cc6596b0
2d9daf43f24533e4275b3b0759eabfbd2fd638627da9ee8b7bf1f518e0d67396
GET /CoBrowse/coBrowse.css HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-type: text/css
content-language: en-US
vary: Origin, Accept-Encoding
content-encoding: gzip
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
content-length: 1939
set-cookie: dtCookie=v_4_srv_57_sn_1BC35339CC71BC3D0B1452C7E9A6C663_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!Re6mc10T3le+bKRrrGCShuzXWlQZEp8MLaitZbNt94NrGRG2q7pUrSbxbcBIaxRtAPIZ4duCJxBLO/o=; path=/; Httponly
TLTSID=0F3E2285D804E0A4332B551B72F31150; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=F1670E7820637B4CCC95683C4E08F919; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841322_19085_6578_0_0";dur=1
X-Firefox-Spdy: h2
assets.adobedtm.com/1d90950c926aacaf003e1e8e48aeb1189d4d7901/s-code-contents-602c1933126fb31d0e3a06b77140be45cdb0144c.js
2.18.172.233200 OK 15 kB URL HTTP/2 assets.adobedtm.com/1d90950c926aacaf003e1e8e48aeb1189d4d7901/s-code-contents-602c1933126fb31d0e3a06b77140be45cdb0144c.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (1032)
Hash d74de170e274bcec81490e7001fb7c8b
0e2283b98604625f130df0d58d2295d671b563e3
0a540b8d38ff40acb064f180516277e2d8dbe60229d512cc34aa7b991c8d41e5
GET /1d90950c926aacaf003e1e8e48aeb1189d4d7901/s-code-contents-602c1933126fb31d0e3a06b77140be45cdb0144c.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "b9117b5e90d21acaf6fd95c9a7503033:1577629591.646812"
last-modified: Sun, 29 Dec 2019 14:26:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
content-length: 14780
access-control-allow-origin: https://ilab-nosweatdebt-demo.azurewebsites.net
timing-allow-origin: *
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/container/container.js
104.110.20.120200 OK 322 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/container/container.js
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Size 322 kB (321699 bytes)
Hash 30c62fb876d454b9e8bf1983d017d41d
812d43ee262e64f7081f66ed70d162c3083cbefb
048ed81ba4f7ed785ce826b975c1a782b576a956aee1d700dfa15ca07cd1fc72
GET /JavaScriptLib/dynamicjs/build/container/container.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 321699
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_70_sn_4E0B434C58C7112DF93F2AC7E04CF731_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!8m5o3rulvVqTk25rrGCShuzXWlQZEntZXruovJTwsMEiTFO9c1SbEsOMQyy4BbmbFCQOUQSPjx/sHjM=; path=/; Httponly
TLTSID=45CEA7CF73A04C036F03BFB045271EA9; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=4FEC78B9021068C068502212F3E6B257; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841317_16524_8730_0_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/CoBrowse/coBrowse.js
104.110.20.120200 OK 4.2 kB URL HTTP/2 www.onlinebanking.pnc.com/CoBrowse/coBrowse.js
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Hash d4ac09026e5246360ff292df0153ae19
d86d8e6a60cc87547ac06262a2f89b5837be5d5e
9bb10cc9c957e9028da0a72aae3d19fa1c6a4931e9f65dadfac2b1ab6b695637
GET /CoBrowse/coBrowse.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 4238
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_69_sn_DE02378476C56E0E597118338109F102_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!ISftxvhGVDhcYZFrrGCShuzXWlQZEjyUT+7lN+CMQZuhSoklbOn/nwedosHfsdasWAftI4kf26TOEVw=; path=/; Httponly
TLTSID=2E70F2138A9DE777B2C4A1693F6CE299; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=439EDE0F07E61E5082A82E217333D01E; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841323_35368_6553_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/yahoo-dom-event/yahoo-dom-event.js
104.110.20.120200 OK 37 kB URL HTTP/2 www.onlinebanking.pnc.com/JavaScriptLib/dynamicjs/build/yahoo-dom-event/yahoo-dom-event.js
IP 104.110.20.120:0
File type ASCII text, with very long lines (5996), with CRLF line terminators
Hash 65f82956ffedb0418fb7f489cea4ec3b
f567f07e1a9551936e310038f5f6bc478ee34625
ba0daa9d63b9990bfdcb218b904859805fcaafa83c181281e990c56fcf229ec3
GET /JavaScriptLib/dynamicjs/build/yahoo-dom-event/yahoo-dom-event.js HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 37015
vary: Origin
content-type: application/javascript
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
set-cookie: dtCookie=v_4_srv_76_sn_C22EDF65799B8E0586EDE0ABA517B5A5_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!r2Uyz8Xd1uLL3tlrrGCShuzXWlQZEgqXHFlh/zAwXsZkxGSNE1OxPIxaxmrI4N+SgfQFj/KWQgwxEQs=; path=/; Httponly
TLTSID=D8076045F8B1CBB922CDEFC1EEBBA878; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=E5A737ECE7B8E4F7F7FEE30CD8A0F551; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841329_34604_7198_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
104.110.20.120200 OK 45 kB URL HTTP/2 www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
IP 104.110.20.120:0
File type ASCII text, with very long lines (2578), with CRLF line terminators
Hash e1965563cbe39e92e64ce4ed6700edde
463e031900d63d47b17b1ce3e121ed02fe6b6267
e5c2330f96ac2a21f96dcca119245848d761e9648fac1e1b21d960ceef003993
GET /css2/common.css?nocache=1665781762 HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-type: text/css
content-language: en-US
vary: Origin, Accept-Encoding
content-encoding: gzip
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
content-length: 44814
set-cookie: dtCookie=v_4_srv_70_sn_9BECF1B974F141A9A7675D9BC3EBA11C_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!gc7jXd2I1krlB/9rrGCShuzXWlQZEmbVJkZLHRbRIue1BC6XvVZdALnI4H/DwUmAu5tt5x745L04skY=; path=/; Httponly
TLTSID=8E7BC0317D3ED73EAFFF2DAC4838B83A; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=FD0C3A0B46EF6B750E4867405252F272; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841315_26489_8792_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/css2/reset.css
104.110.20.120200 OK 626 B URL HTTP/2 www.onlinebanking.pnc.com/css2/reset.css
IP 104.110.20.120:0
File type ASCII text, with CRLF line terminators
Hash 7c61c6b625d044ce63ae195552db531e
fbc56f2d3a2acdfb4faec8bda65c1c1417e222ee
c41c5fe6dcb0b13735e91747450bdbf6701a2d97df849bf23e64d0f413bc3473
GET /css2/reset.css HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-type: text/css
content-language: en-US
vary: Origin, Accept-Encoding
content-encoding: gzip
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:51 GMT
content-length: 626
set-cookie: dtCookie=v_4_srv_75_sn_BCE3E0BC0757F8E126281B21705B878F_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!eC3QWKJdSxEbLIlrrGCShuzXWlQZEsFXNJ9LOqayyccIhrFNnSgFefNKZw9rSgVRX5CXorTx13Ocq2I=; path=/; Httponly
TLTSID=AC015F9151882E66993C66F4B67F3556; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=8359B8738883770FD395ECF140DA8135; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:51 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841342_13483_7290_1_0";dur=1
X-Firefox-Spdy: h2
assets.adobedtm.com/3a017e787494/cfb983dcbfc5/8b91f8969159/EX748faa73d23f4f0585445bd26d54c8b7-libraryCode_source.min.js
2.18.172.233200 OK 23 kB URL HTTP/2 assets.adobedtm.com/3a017e787494/cfb983dcbfc5/8b91f8969159/EX748faa73d23f4f0585445bd26d54c8b7-libraryCode_source.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (32724)
Hash 1d1022c042cae25e5ffa906a872d91c2
f0ab7e123600ae7e52c5c6e85ba368815ca60d2f
fcfab84cb75c455bd182c112665be5d62d6ba00b46b56ce02437c3a45cc9cfc8
GET /3a017e787494/cfb983dcbfc5/8b91f8969159/EX748faa73d23f4f0585445bd26d54c8b7-libraryCode_source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4d485b10823c626203e0dd4cfb9afd23:1678332601.073845"
last-modified: Thu, 09 Mar 2023 03:30:01 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 23249
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
access-control-allow-origin: https://ilab-nosweatdebt-demo.azurewebsites.net
timing-allow-origin: *
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/wrapper/bg_fade.png
104.110.20.120200 OK 244 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/wrapper/bg_fade.png
IP 104.110.20.120:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1x461, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a1f09a80fe650ac019537fded981ea99
4fd03e55bddb131c16f5e0cf2a18750d489282f9
edc468fb28baeb12d16bb1b039b8b384f7b02cab15e4457a35441c4236f7d216
GET /Images2/wrapper/bg_fade.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "18c-5eca9d80e5780"
last-modified: Mon, 07 Nov 2022 02:42:05 GMT
server: Akamai Image Manager
content-length: 244
content-type: image/webp
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841344_50_8796_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/wrapper/noNav_bg.png
104.110.20.120200 OK 354 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/wrapper/noNav_bg.png
IP 104.110.20.120:0
File type PNG image data, 970 x 10, 8-bit gray+alpha, non-interlaced\012- data
Hash 0fc2df7ad37fc021e4104169da1c8607
e67a4b426676030a61c047e9dca1eaba2ef45cc2
6a1e22db4bf8076f7b2e67115b94dfe458743fe8e3be5e59373c45810d28d199
GET /Images2/wrapper/noNav_bg.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "213-5e6eb2f9bdc80"
last-modified: Sat, 17 Sep 2022 14:41:52 GMT
server: Akamai Image Manager
x-serial: 670
x-check-cacheable: YES
content-length: 354
content-type: image/png
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841347_31_6110_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/panelSprite.png
104.110.20.120200 OK 712 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/panelSprite.png
IP 104.110.20.120:0
File type PNG image data, 1980 x 60, 8-bit colormap, non-interlaced\012- data
Hash 9ebcc4718d05d5732381ac99ab250d36
44d6ceea13f387fe0ec6ca08e6e59d90daa01898
fb8dc6f43f5fef822508fe0429d55e26c1082db8e300f56bee728b6b2de58c47
GET /Images2/panelSprite.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "2c8-5e6eb2f9bdc80"
last-modified: Fri, 07 Oct 2022 18:15:33 GMT
server: Akamai Image Manager
x-serial: 258
x-check-cacheable: YES
content-length: 712
content-type: image/png
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841349_40_6644_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/wrapper/content_bg.png
104.110.20.120200 OK 142 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/wrapper/content_bg.png
IP 104.110.20.120:0
File type PNG image data, 970 x 2, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a6db280b05daf2b196b848f8cc10816
30b0e190f5f48ada1d2157d0ffe393665afa7102
424171982c2e7b6ea8e2750cc0c709a103ac79291218331b6e0d86b2e5db7459
GET /Images2/wrapper/content_bg.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 01 Jan 2023 05:52:52 GMT
server: Akamai Image Manager
x-serial: 1190
x-check-cacheable: YES
content-length: 142
content-type: image/png
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841348_31_7731_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/panels/topRight.png
104.110.20.120200 OK 150 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/panels/topRight.png
IP 104.110.20.120:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 10x30, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cc3427f0607cff9672797381745399c5
c5cd0b3f45ad33bbbe448e204e22fe7107626607
d21fb7c639ad1467608e47d38d195d3053c16dfdd71eee7895921f3f3599fd6a
GET /Images2/panels/topRight.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Dec 2022 07:34:54 GMT
server: Akamai Image Manager
content-length: 150
content-type: image/webp
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841350_27_6517_0_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/buttons/button.png
104.110.20.120200 OK 358 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/buttons/button.png
IP 104.110.20.120:0
File type PNG image data, 130 x 24, 8-bit colormap, non-interlaced\012- data
Hash c2edca791dcb7d53a7014e9d884a154c
b14f0f87f413490fb564fa0cb619e12c76691ffd
fc1a15ae21648ec99fc426033f20173fff65beebfb327fdbaa581f0dc2566178
GET /Images2/buttons/button.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Dec 2022 18:28:25 GMT
server: Akamai Image Manager
x-serial: 1662
x-check-cacheable: YES
content-length: 358
content-type: image/png
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841351_31_6105_0_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/panels/botRight.png
104.110.20.120200 OK 100 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/panels/botRight.png
IP 104.110.20.120:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 10x10, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 104ea1f24999de7f056fd2586b65d5f1
13f088bde8eaf979b526faf9abef55f0c3a853dd
a99772fc532f03960dd45ea143b95b35134a4451474496a990923794051a8687
GET /Images2/panels/botRight.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "db-5eca9d80e5780"
last-modified: Mon, 07 Nov 2022 06:56:41 GMT
server: Akamai Image Manager
x-serial: 37
x-check-cacheable: YES
content-length: 100
content-type: image/webp
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841352_29_6085_0_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/Icons/cs_icon_cell.gif
104.110.20.120200 OK 236 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/Icons/cs_icon_cell.gif
IP 104.110.20.120:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d0ab47531eabb9430a21988dd4fb26dc
702f0799832b4efb209daf76fe0636d89630fbe8
0771d84b280ccc98a76fbf0ce14934e284728030a633d5d12b553920b379e102
GET /Images2/Icons/cs_icon_cell.gif HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Feb 2023 13:04:18 GMT
server: Akamai Image Manager
x-serial: 1897
x-check-cacheable: YES
content-length: 236
content-type: image/webp
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841353_28_6062_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/wrapper/footer_bot.png
104.110.20.120200 OK 628 B URL HTTP/2 www.onlinebanking.pnc.com/Images2/wrapper/footer_bot.png
IP 104.110.20.120:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f59cc62dbcb15e6bc27c38cbdcc077d8
b09bcd9bab5a404f46333ac3ea402a66960c5857
15437ff9e91a30ac2260c86ec2da1ad95bc1a508f610951a8ced45736e548fda
GET /Images2/wrapper/footer_bot.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 27 Dec 2022 23:17:21 GMT
server: Akamai Image Manager
x-serial: 986
x-check-cacheable: YES
content-length: 628
content-type: image/webp
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841355_30_6724_1_0";dur=1
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/wrapper/topHeader_Short_bg.png
104.110.20.120200 OK 7.1 kB URL HTTP/2 www.onlinebanking.pnc.com/Images2/wrapper/topHeader_Short_bg.png
IP 104.110.20.120:0
File type PNG image data, 970 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash f197b0c6918a5d5dba65759c0736b078
31f2a48efca85b5a3bd63d9731f6b84ec40ca5d1
504bd0d64fe73a49f07ebbb1682f3d1b7c58298d70040f5e0d997d819022a0be
GET /Images2/wrapper/topHeader_Short_bg.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-akamai-im-skip-dlr: 1
server: Akamai Image Server
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
pragma: no-cache no-store
x-akamai-note: original-image
content-type: image/png
content-length: 7141
cache-control: private, no-transform, max-age=1800
expires: Wed, 29 Mar 2023 03:01:51 GMT
date: Wed, 29 Mar 2023 02:31:51 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841345_4158_8258_1_0";dur=1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6938
Expires: Wed, 29 Mar 2023 04:27:30 GMT
Date: Wed, 29 Mar 2023 02:31:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6938
Expires: Wed, 29 Mar 2023 04:27:30 GMT
Date: Wed, 29 Mar 2023 02:31:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6938
Expires: Wed, 29 Mar 2023 04:27:30 GMT
Date: Wed, 29 Mar 2023 02:31:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXiCIy2ZqOyLvougeQikdsmaIJ9BfMPpOO4oU-3nEGY33FQGCm0ZoQ==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:44:35 GMT
age: 17237
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: LAAUFZcFBIpdMUkaDQXGW1sdwLK9c_uhQQHLiJHGF7dEvfJ0KX7MaA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:37:00 GMT
age: 17692
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2c8db4c7fb7a75c469208510007edef
7d4f86b02d0f30ff44453f3fb5ae2704895e92a3
f923d651ca0e6481a2819b891c546f84c3d3b6ae86a14c94ca8050c2b6c412d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: 8f686bb3-a4ad-4d2f-b947-5e6b83cb24f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CWnNqG49oAMFxKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f5257-4f5c982f03e2f15b16c6bebd;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 19:58:15 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: VP3bXyVL4DjPA4Y4rl45S59BTO5Nu9enYCFQTuBvhc-1QeDahin_mw==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 23:41:56 GMT
age: 10196
etag: "7d4f86b02d0f30ff44453f3fb5ae2704895e92a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11a3ec10ceec6a8147a4c173b4b420d7
9fe904e5f3062677c6290b821c89a7e3aaee0371
ce934631eda7670329b9bc46a14eff0dd9839bdc838ad90d401600bee70c4f4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: 48f65bca-a792-4f2c-8eb4-d05c6dc2c2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CXODXE7eoAMFl3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f907b-6a5a7a890aa383fc4e0eb983;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 00:23:23 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qeit17u4hnY6-u4djG8q98cqMH0bj5wwWQxczrjTN02iB3tQ8nq5MQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 19:20:30 GMT
age: 25882
etag: "9fe904e5f3062677c6290b821c89a7e3aaee0371"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c59a4159472f366958e67dc928b2a749
0c483adeebf10605e954c55e94c3f43bf1dace30
8fe24cee6c4ee94547e8721448fbdcbd0ab6a38de924d62e00ee6310a1cdfe4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7053
x-amzn-requestid: 2fc4b1ec-6550-4e18-8374-4f174b081f40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguaOHC-IAMFUYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dda-1e21707f0ceb33ff63afb449;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:26 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: KyFR5-RwbZBpuDGeCmHDv3mNngDb1jiKDAYnQDzSDiNIK1Tgb_8fvg==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 22:17:11 GMT
etag: "0c483adeebf10605e954c55e94c3f43bf1dace30"
content-type: image/jpeg
age: 15281
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 096bf7a8a2bfe48c19e6bf6887145e64
6193039864cae4ab0163f3a7d45613fb86e6be14
51625131b04aa5294e90062807ca728b7a41db79ea069cd238711f8ead5ecd8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7630
x-amzn-requestid: 5f162d03-0d82-4cd6-8812-4dac159bc2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY9HwhIAMFeOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-670279397929c69c0ee58b35;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 79RHJqi0dV_HFeUvGnzbChn8_54pc_ceWOEvLzrtxhr33rG6V42Buw==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:44:36 GMT
etag: "6193039864cae4ab0163f3a7d45613fb86e6be14"
content-type: image/jpeg
age: 17236
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.onlinebanking.pnc.com/Images2/livelook/livelook.png
104.110.20.120200 OK 1.2 kB URL HTTP/2 www.onlinebanking.pnc.com/Images2/livelook/livelook.png
IP 104.110.20.120:0
File type PNG image data, 21 x 21, 8-bit/color RGB, non-interlaced\012- data
Hash 31c894543d2f2dd2356bceccea45ef3c
e2602b5a14cf161744891713953eb9fbf85eb9c8
a5e34dff715ae6800da8ea8beab0abd05a036f8eb52e12ccf6ca43b67961867a
GET /Images2/livelook/livelook.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Mar 2023 20:19:56 GMT
server: Akamai Image Manager
content-length: 1162
content-type: image/png
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:52 GMT
date: Wed, 29 Mar 2023 02:31:52 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841326_81628_7973_1_0";dur=1
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash e03e36232159e7c3f58c79153c4f2a99
f72cf7c0eba8a373ae9d330c83d6e81cf1e1c1f7
2992df4cd478cbea340f65cf429ac3d7f3950d46daa8202f24148b8255a87884
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4896
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:31:52 GMT
Last-Modified: Wed, 29 Mar 2023 01:10:16 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
www.onlinebanking.pnc.com/Images2/navSprite.png
104.110.20.120200 OK 2.4 kB URL HTTP/2 www.onlinebanking.pnc.com/Images2/navSprite.png
IP 104.110.20.120:0
File type PNG image data, 265 x 230, 8-bit/color RGB, non-interlaced\012- data
Hash 26055248012067fab90dec17904f1384
6ce7aa39c4b45c29c6a3a42c099496627ea4b257
5c7484f3edb6fe12bee237d7a090c728a3a2fa2cdf61b7637953fadd404fcaa3
GET /Images2/navSprite.png HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.onlinebanking.pnc.com/css2/common.css?nocache=1665781762
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-akamai-im-skip-dlr: 1
server: Akamai Image Server
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
pragma: no-cache no-store
x-akamai-note: original-image
content-type: image/png
content-length: 2384
cache-control: private, no-transform, max-age=1800
expires: Wed, 29 Mar 2023 03:01:52 GMT
date: Wed, 29 Mar 2023 02:31:52 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841346_21711_6783_1_0";dur=1
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&ts=1680057133836
54.194.252.151302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&ts=1680057133836
IP 54.194.252.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&ts=1680057133836 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://ilab-nosweatdebt-demo.azurewebsites.net
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ilab-nosweatdebt-demo.azurewebsites.net
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v046-0d40b97f0.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&ts=1680057133836
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=89283448689748402182823822190306634236; Max-Age=15552000; Expires=Mon, 25 Sep 2023 02:31:52 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: bzflKgLnRNY=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/id/rd?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&ts=1680057133836
54.194.252.151200 OK 124 B URL HTTP/1.1 dpm.demdex.net/id/rd?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&ts=1680057133836
IP 54.194.252.151:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f6783349ac4177ec3b3845fd520dca6
d84e7a43a8c8ff6f1a568ad6cb4162767f5b32b7
64bc30aa6a9d9e5396bb67c6af32c31f5ca6610641f0bdea10d759281df6adca
GET /id/rd?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&ts=1680057133836 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ilab-nosweatdebt-demo.azurewebsites.net
Content-Type: application/x-www-form-urlencoded
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ilab-nosweatdebt-demo.azurewebsites.net
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-0ec49e33e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 172
X-TID: af18NrKsQv4=
Content-Length: 124
Connection: keep-alive
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c5952327a5d5bd495f8ccae10b2e92b5
0b628cc3074e9006f28a182af866c97884e74637
a1904b95923773751d224257b44b3e15c04459cb77d3016c45647db6785135bd
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:31:52 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 17:33:38 GMT
Expires: Mon, 03 Apr 2023 17:33:37 GMT
Etag: "0b628cc3074e9006f28a182af866c97884e74637"
Cache-Control: max-age=550434,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7af4b2f87d6ab4fa-OSL
analytics.pnc.com/id?d_visid_ver=5.5.0&d_fieldgroup=MC&mcorgid=5CC9123F5245B04A0A490D45%40AdobeOrg&ts=1680057134234
13.37.25.97200 OK 48 B URL HTTP/2 analytics.pnc.com/id?d_visid_ver=5.5.0&d_fieldgroup=MC&mcorgid=5CC9123F5245B04A0A490D45%40AdobeOrg&ts=1680057134234
IP 13.37.25.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e1b573b76a58b01b9914c912696de5e6
e700c0adf32f020224ef3d8854a049d0fb27b185
a799a6cbbc795ff354de7990b0732fbc66990823ead64d8b8adb47c72bd425d8
GET /id?d_visid_ver=5.5.0&d_fieldgroup=MC&mcorgid=5CC9123F5245B04A0A490D45%40AdobeOrg&ts=1680057134234 HTTP/1.1
Host: analytics.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://ilab-nosweatdebt-demo.azurewebsites.net
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://ilab-nosweatdebt-demo.azurewebsites.net
access-control-allow-credentials: true
date: Wed, 29 Mar 2023 02:31:52 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: AMCV_5CC9123F5245B04A0A490D45%40AdobeOrg=0%7CMCMID%7C88861748458143930041809844969775163026; Path=/; Domain=pnc.com; Max-Age=63072000; Expires=Fri, 28 Mar 2025 02:31:31 GMT;
s_ecid=MCMID%7C88861748458143930041809844969775163026; Path=/; Domain=pnc.com; Max-Age=63072000; Expires=Fri, 28 Mar 2025 02:31:31 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.5.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&d_mid=88861748458143930041809844969775163026&ts=1680057134471
54.194.252.151200 OK 1.1 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.5.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&d_mid=88861748458143930041809844969775163026&ts=1680057134471
IP 54.194.252.151:0
File type JSON data\012- , ASCII text, with very long lines (3132), with no line terminators
Hash c4a27b7ae19d9e6db80b2fb7fae1f4b2
e416de99fa545d31b960a190001f211dd5d31b53
d80cd9cea702a67763db872840f3456c170a49aae7aed4d0595697a739e7461f
GET /id?d_visid_ver=5.5.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=5CC9123F5245B04A0A490D45%40AdobeOrg&d_nsid=0&d_mid=88861748458143930041809844969775163026&ts=1680057134471 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://ilab-nosweatdebt-demo.azurewebsites.net
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ilab-nosweatdebt-demo.azurewebsites.net
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-0ff0e17f0.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=80965486603439727701302504023769288092; Max-Age=15552000; Expires=Mon, 25 Sep 2023 02:31:52 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: Xr+7slOXQFw=
Content-Length: 1083
Connection: keep-alive
analytics.pnc.com/b/ss/pncglobalprod/10/JS-2.23.0-LDQM/s03292583552478?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=29%2F2%2F2023%202%3A32%3A14%203%200&d.&nsid=0&jsonv=1&.d&mid=88861748458143930041809844969775163026&aamlh=6&ce=UTF-8&ns=pncbank&pageName=olb%7Clogin%7Ccomplete-sign-on&g=https%3A%2F%2Filab-nosweatdebt-demo.azurewebsites.net%2FLogin.html&c.&linkType=pv&.c&cc=USD&ch=login&server=ilab-nosweatdebt-demo.azurewebsites.net&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=olb&h1=D%3DpageName&c2=olb%7Clogin&c3=olb%7Clogin%7Ccomplete-sign-on&c4=olb%7Clogin%7Ccomplete-sign-on&c5=D%3Dv5&v5=olb_mass&c9=en&c11=D%3Dv11&v11=10%3A32%20PM%7CTuesday&c13=D%3Dv13&v13=New&v21=D%3DpageName&c35=D%3Dv35&v35=unknown%20%28non-pnc%20domain%29&c38=D%3Dr&v38=D%3Dr&c39=PNC%20LaunchOLB%20AppJS%20v2.0&v54=no%20source%20found&c75=D%3Dg&v75=D%3Dg&v76=no%20code&v78=en&v79=1280&v99=88861748458143930041809844969775163026&v109=PNC%20LaunchOLB%20AppJS%20v2.0%20-%202023-03-09T03%3A28%3A47Z&v113=not%20an%20article&v141=n%2Fa&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&mcorgid=5CC9123F5245B04A0A490D45%40AdobeOrg&AQE=1
13.37.25.97200 OK 3.1 kB URL HTTP/2 analytics.pnc.com/b/ss/pncglobalprod/10/JS-2.23.0-LDQM/s03292583552478?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=29%2F2%2F2023%202%3A32%3A14%203%200&d.&nsid=0&jsonv=1&.d&mid=88861748458143930041809844969775163026&aamlh=6&ce=UTF-8&ns=pncbank&pageName=olb%7Clogin%7Ccomplete-sign-on&g=https%3A%2F%2Filab-nosweatdebt-demo.azurewebsites.net%2FLogin.html&c.&linkType=pv&.c&cc=USD&ch=login&server=ilab-nosweatdebt-demo.azurewebsites.net&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=olb&h1=D%3DpageName&c2=olb%7Clogin&c3=olb%7Clogin%7Ccomplete-sign-on&c4=olb%7Clogin%7Ccomplete-sign-on&c5=D%3Dv5&v5=olb_mass&c9=en&c11=D%3Dv11&v11=10%3A32%20PM%7CTuesday&c13=D%3Dv13&v13=New&v21=D%3DpageName&c35=D%3Dv35&v35=unknown%20%28non-pnc%20domain%29&c38=D%3Dr&v38=D%3Dr&c39=PNC%20LaunchOLB%20AppJS%20v2.0&v54=no%20source%20found&c75=D%3Dg&v75=D%3Dg&v76=no%20code&v78=en&v79=1280&v99=88861748458143930041809844969775163026&v109=PNC%20LaunchOLB%20AppJS%20v2.0%20-%202023-03-09T03%3A28%3A47Z&v113=not%20an%20article&v141=n%2Fa&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&mcorgid=5CC9123F5245B04A0A490D45%40AdobeOrg&AQE=1
IP 13.37.25.97:0
File type ASCII text, with very long lines (3088)
Hash f608a891c72d2d285b9dc088e92cfc18
d4bf95dc38a0e27c866996049db02e9bce6dde99
bb5e4e22c40794c4fddac805e25edebcc98f38cd9f841b7aac615874d18322d8
GET /b/ss/pncglobalprod/10/JS-2.23.0-LDQM/s03292583552478?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=29%2F2%2F2023%202%3A32%3A14%203%200&d.&nsid=0&jsonv=1&.d&mid=88861748458143930041809844969775163026&aamlh=6&ce=UTF-8&ns=pncbank&pageName=olb%7Clogin%7Ccomplete-sign-on&g=https%3A%2F%2Filab-nosweatdebt-demo.azurewebsites.net%2FLogin.html&c.&linkType=pv&.c&cc=USD&ch=login&server=ilab-nosweatdebt-demo.azurewebsites.net&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=olb&h1=D%3DpageName&c2=olb%7Clogin&c3=olb%7Clogin%7Ccomplete-sign-on&c4=olb%7Clogin%7Ccomplete-sign-on&c5=D%3Dv5&v5=olb_mass&c9=en&c11=D%3Dv11&v11=10%3A32%20PM%7CTuesday&c13=D%3Dv13&v13=New&v21=D%3DpageName&c35=D%3Dv35&v35=unknown%20%28non-pnc%20domain%29&c38=D%3Dr&v38=D%3Dr&c39=PNC%20LaunchOLB%20AppJS%20v2.0&v54=no%20source%20found&c75=D%3Dg&v75=D%3Dg&v76=no%20code&v78=en&v79=1280&v99=88861748458143930041809844969775163026&v109=PNC%20LaunchOLB%20AppJS%20v2.0%20-%202023-03-09T03%3A28%3A47Z&v113=not%20an%20article&v141=n%2Fa&s=1280x1024&c=24&j=1.6&v=N&k=N&bw=1280&bh=939&mcorgid=5CC9123F5245B04A0A490D45%40AdobeOrg&AQE=1 HTTP/1.1
Host: analytics.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 29 Mar 2023 02:31:52 GMT
expires: Tue, 28 Mar 2023 02:31:52 GMT
last-modified: Thu, 30 Mar 2023 02:31:52 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3607895177577168896-4619808553801542930
vary: *
dcs: dcs-prod-irl1-1-v046-0be6689a7.edge-irl1.demdex.com 4 ms
x-aam-tid: LqgYet1VSWA=
content-type: application/x-javascript;charset=utf-8
content-length: 3089
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
content.pncmc.com/live/pnc/personal/onlinebanking/chat/buttons/repoffline.gif
104.110.21.220200 OK 43 B URL HTTP/2 content.pncmc.com/live/pnc/personal/onlinebanking/chat/buttons/repoffline.gif
IP 104.110.21.220:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /live/pnc/personal/onlinebanking/chat/buttons/repoffline.gif HTTP/1.1
Host: content.pncmc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
etag: "325472601571f31e1bf00674c368d335:1250795802"
last-modified: Thu, 20 Aug 2009 19:16:42 GMT
server: AkamaiNetStorage
content-length: 43
date: Wed, 29 Mar 2023 02:31:52 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_re/jsv2/overlay.js?_v=0.11.0
178.249.97.98200 OK 3.7 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_re/jsv2/overlay.js?_v=0.11.0
IP 178.249.97.98:0
Hash e5f4805116f2a05163920e1ad1650277
4f40bcbb93d76e4caced351797bded7bee0b2f6f
056b70b073b678893df96d28a680cdb068e09e8df1684e0f4be028262ca3c79b
GET /le_re/jsv2/overlay.js?_v=0.11.0 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:31:51 GMT
content-type: application/javascript
last-modified: Sat, 04 Feb 2023 02:30:31 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Thu, 28 Mar 2024 02:31:51 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
pncbank.demdex.net/dest5.html?d_nsid=0
34.255.91.107200 OK 2.8 kB URL HTTP/1.1 pncbank.demdex.net/dest5.html?d_nsid=0
IP 34.255.91.107:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: pncbank.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Wed, 29 Mar 2023 02:31:52 GMT
DCS: dcs-prod-irl1-2-v046-0f71a5189.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Wed, 8 Feb 2023 11:53:45 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: 3VwXc/yNSjA=
transfer-encoding: chunked
Connection: keep-alive
www.onlinebanking.pnc.com/CoBrowse/img/company_logo.1033.1.jpg
104.110.20.120200 OK 1.2 kB URL HTTP/2 www.onlinebanking.pnc.com/CoBrowse/img/company_logo.1033.1.jpg
IP 104.110.20.120:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4a1a46fb2dbcde8515f9321f6d745c6d
808290d2329b92376f692551eb4dd6576fec713a
c1e45575c4db63fded87494e7d0c3fff912175e2b85d5e38511a4a7b91e18dcd
GET /CoBrowse/img/company_logo.1033.1.jpg HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: AkamaiNetStorage
content-type: text/html
etag: "48e43835e45e7ec0a3be8c52265077e4:1679894874.537793"
strict-transport-security: max-age=31536000
x-xss-protection: 1
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
expires: Wed, 29 Mar 2023 02:31:53 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 29 Mar 2023 02:31:53 GMT
content-length: 1158
server-timing: ak_p; desc="466682_388255174_43841325_34630_1025_5_0";dur=1
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash c6dcf077a46bd0532c02800cbeeaf1da
e1444a7d3bcdc5f185e4b851cc6eaca1fef1dbac
37306e5f65996f2fcfae4d74b967d68ba998157c8be5627ea00cecd5a49e416a
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166027
Date: Wed, 29 Mar 2023 02:31:53 GMT
Etag: "64237cd3-1d7"
Expires: Fri, 31 Mar 2023 00:39:00 GMT
Last-Modified: Tue, 28 Mar 2023 23:48:35 GMT
Server: ECAcc (nya/7946)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qOhM3FkSWTrA_AlTBmGBY9xp0Z9-iI_1sYZC9Ajkz4ItUgFfEypCCA==
Age: 3025
cm.everesttech.net/cm/dd?d_uuid=80965486603439727701302504023769288092
54.72.144.202302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=80965486603439727701302504023769288092
IP 54.72.144.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=80965486603439727701302504023769288092 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 29 Mar 2023 02:31:53 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~ZCOjGQAAAFKmyQNe; Domain=.everesttech.net; Expires=Thu, 28-Mar-2024 02:31:53 GMT; Path=/
everest_session_v2=ZCOjGQAAAFKmygNe; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe
Server: AMO-cookiemap/1.1
www.onlinebanking.pnc.com/favicon.ico
104.110.20.120200 OK 1.2 kB URL HTTP/2 www.onlinebanking.pnc.com/favicon.ico
IP 104.110.20.120:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 582bb5dc5e89bb4af227c8fb277c7d57
e9b1e5bb863b15d4fbd2bd3a6f304ba1536e272c
5f2f0c475bbb79c2659fc3a882a414f8ed2f0e111e5d2d6a692d015bda1bb97b
GET /favicon.ico HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-powered-by: Servlet/3.0
x-oneagent-js-injection: true
pragma: no-cache no-store
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 24 Mar 2023 16:00:50 GMT
content-length: 1150
vary: Origin
content-type: image/x-icon
content-language: en-US
cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, s-maxage=0
date: Wed, 29 Mar 2023 02:31:53 GMT
set-cookie: dtCookie=v_4_srv_69_sn_0F621E7777C3BC8C297C91DCFD51F4D3_perc_100000_ol_0_mul_1_app-3Adad1bdb5df9abcfb_1; Path=/; Domain=.pnc.com
BIGipServerwww.onlinebanking-cp-gf1-3000=!9RDPpgwLYmIMYbdrrGCShuzXWlQZEpSLFTF/HVFrUexVQW8kA8sLZGAeL3ihUlDtRxGbdevG3fIo7g==; path=/; Httponly
TLTSID=EBF04FF45196D84AD4A6CA1772EB1C6A; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
TLTUID=0F0375DE8445291CB1C9576EFEE81A40; Path=/; Domain=.pnc.com; Version=1; Secure; Httponly
DCID=GF1; expires=Wed, 29-Mar-2023 02:51:53 GMT; path=/; domain=.www.onlinebanking.pnc.com; secure; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: dtSInfo;desc="1", ak_p; desc="466682_388255174_43841376_34008_7634_4_0";dur=1
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe
54.194.252.151302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe
IP 54.194.252.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v046-0f71a5189.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=05091052991206724243535919532006648933; Max-Age=15552000; Expires=Mon, 25 Sep 2023 02:31:53 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: +iVKU0pdQQE=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe
54.194.252.151200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe
IP 54.194.252.151:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=ZCOjGQAAAFKmyQNe HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v046-0c554dbd5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 1ePAhbJ5Q1A=
Content-Length: 59
Connection: keep-alive
www.onlinebanking.pnc.com/Images/Other/secure_area.gif
104.110.20.120200 OK 1.5 kB URL HTTP/2 www.onlinebanking.pnc.com/Images/Other/secure_area.gif
IP 104.110.20.120:0
File type PNG image data, 160 x 30, 8-bit colormap, non-interlaced\012- data
Hash 7dad12f175312babc64f98b573b00337
ceacf85695eb72ccb2cf2cf3b253516674146a6b
caf85a26540dac7f6c265fb9ae4724752e96a889446ad2ae478bc949cf4d435f
GET /Images/Other/secure_area.gif HTTP/1.1
Host: www.onlinebanking.pnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 16:05:23 GMT
server: Akamai Image Manager
content-length: 1537
content-type: image/png
cache-control: private, no-transform, max-age=43200
expires: Wed, 29 Mar 2023 14:31:53 GMT
date: Wed, 29 Mar 2023 02:31:53 GMT
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000
server-timing: ak_p; desc="466682_388255174_43841324_240348_8250_3_0";dur=1
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf3e4f0a-faba-451d-ad59-1fb691753e14.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf3e4f0a-faba-451d-ad59-1fb691753e14.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b6bd3d6c290e2be5effe451fddc92288
456c678dd0b64d84021c41383a534afeaa4d7af0
3d645c8b903b9f5593d068feb00b1c04cf8444ed78a292458e69d5c553cb1691
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf3e4f0a-faba-451d-ad59-1fb691753e14.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9781
x-amzn-requestid: 9a919196-e536-4ef7-a2b2-9637aa75abff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ceq6FGAJIAMF7Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64228b73-769c33f459c985ab427ed47b;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 06:38:43 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: EFPuF3xknmH1frUX8bIJXNMjLoHEk_0V9Jd5sNxj16MR5cun53Xe1A==
via: 1.1 1cbc126937aab64e42a05f9bf2f8daee.cloudfront.net (CloudFront), 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 22:30:02 GMT
age: 14516
etag: "456c678dd0b64d84021c41383a534afeaa4d7af0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_re/jsv2/UISuite.js?_v=0.11.0
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_re/jsv2/UISuite.js?_v=0.11.0
IP 178.249.97.98:0
GET /le_re/jsv2/UISuite.js?_v=0.11.0 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ilab-nosweatdebt-demo.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:31:51 GMT
content-type: application/javascript
last-modified: Sat, 04 Feb 2023 02:30:31 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Thu, 28 Mar 2024 02:31:51 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2