r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10087
Expires: Sat, 04 Feb 2023 04:21:51 GMT
Date: Sat, 04 Feb 2023 01:33:44 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16761
Expires: Sat, 04 Feb 2023 06:13:05 GMT
Date: Sat, 04 Feb 2023 01:33:44 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4939
Expires: Sat, 04 Feb 2023 02:56:03 GMT
Date: Sat, 04 Feb 2023 01:33:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 00:43:35 GMT
content-type: application/json
age: 3009
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: etsnBiU7UcZIUqghJqZ6xRSBpqdRbPYfI36hL+FP75JNB4vnr8QE8hUDRgkSR30y0bNkt2mO8ds=
x-amz-request-id: ZWBDSQ8GJHRDQNDZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 00:52:38 GMT
age: 2466
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash df76de4b2ec0f016f1104320ebb4cc0a
0548520370c97b94de3ecfccc5d79cabadf79267
87bf2611f31afb375520b2e91b41d05e3abc0b15b56025c1c76127dbc0ad3db7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87BF2611F31AFB375520B2E91B41D05E3ABC0B15B56025C1C76127DBC0AD3DB7"
Last-Modified: Thu, 02 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 07:33:44 GMT
Date: Sat, 04 Feb 2023 01:33:44 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:33:44 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 01:07:19 GMT
age: 1586
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash da29e8386318c46318799d7e2d5f3ff9
95f3cfd63a0cd8fcc89b2efd67e488fc3fb0be72
cb0dba0c73dea77051ffe9f1cea2648b0a139ce94b39aa0b5f6b0df3532c4cac
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CB0DBA0C73DEA77051FFE9F1CEA2648B0A139CE94B39AA0B5F6B0DF3532C4CAC"
Last-Modified: Fri, 03 Feb 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2047
Expires: Sat, 04 Feb 2023 02:07:52 GMT
Date: Sat, 04 Feb 2023 01:33:45 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash da29e8386318c46318799d7e2d5f3ff9
95f3cfd63a0cd8fcc89b2efd67e488fc3fb0be72
cb0dba0c73dea77051ffe9f1cea2648b0a139ce94b39aa0b5f6b0df3532c4cac
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CB0DBA0C73DEA77051FFE9F1CEA2648B0A139CE94B39AA0B5F6B0DF3532C4CAC"
Last-Modified: Fri, 03 Feb 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1991
Expires: Sat, 04 Feb 2023 02:06:56 GMT
Date: Sat, 04 Feb 2023 01:33:45 GMT
Connection: keep-alive
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-sample-check-CSX2ef22a73.png
192.229.133.92200 OK 7.0 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-sample-check-CSX2ef22a73.png
IP 192.229.133.92:0
File type PNG image data, 520 x 250, 8-bit colormap, non-interlaced\012- data
Hash aa61e93047bdf720eed1287976acee97
0fc3251f1c4687afcd227294eb99a73fa63a6d33
36936c7545dae08fd958b2d652f646e772a2554f52a26c49b34d05a7372309af
GET /sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-sample-check-CSX2ef22a73.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 10564423
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "1b6a-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F70C)
strict-transport-security: max-age=31536000
x-boa-requestid: YzyCsqoAwF8XqV5McOaDswAAAY4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 7018
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-com_cvv2@2x-CSX5f638a68.png
192.229.133.92200 OK 63 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-com_cvv2@2x-CSX5f638a68.png
IP 192.229.133.92:0
File type PNG image data, 276 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 845c2498d59a4f506997d6cc301ba233
7de183fac581e1449a49483a242f21ba197c1aab
f970c0e040cdc56f52d1d1b89b2357ec587ee5a0a7d1e00f7354ae65e074b4dc
GET /sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-com_cvv2@2x-CSX5f638a68.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 128147
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "f6c3-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F710)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vBZkOeUy8cU6yKl77M-QAAAVI
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 63171
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-com_cvv1@2x-CSXec3bc565.png
192.229.133.92200 OK 44 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-com_cvv1@2x-CSXec3bc565.png
IP 192.229.133.92:0
File type PNG image data, 286 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 63cf4d72dedefaccb2c44195f5b255fe
e2265d6d6fa17e8daad2f58297db7bb2c1d135b9
f831295258274780ec6638f8644cfc0e3532d0826f98d373b2ef5de888d50e43
GET /sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-com_cvv1@2x-CSXec3bc565.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 128147
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "adb1-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F712)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vBZjXbFeQ2tlLoUTAQgwAAAd8
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 44465
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-BofA_symbol_rgb-CSX33067442.svg
192.229.133.92200 OK 1.0 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-BofA_symbol_rgb-CSX33067442.svg
IP 192.229.133.92:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6ee579729333a40e6ec2e4025bf6fc84
6d5a2a15a37eb8b9d75e3297e77c4a31858fdac2
8bec640ab2c43a35cea153f4f5efd4dfae1c2f0ee98ed637c2d20ab706be4a0f
GET /sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-BofA_symbol_rgb-CSX33067442.svg HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 128147
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "7d7-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F705)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vBZkOeUy8cU6yKl77M-AAAAU4
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 1009
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-logos-BofA_rgb-CSX5624a146.svg
192.229.133.92200 OK 1.6 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-logos-BofA_rgb-CSX5624a146.svg
IP 192.229.133.92:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8fca89216999aaa83cd49cdd64718983
e5ca753509b6419158235c1d4ead6308f5fd2cfe
bb46da660fc18bdd67ba4672ea42c7cd10de00f1a4161e5a5d2f0b61563f201c
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-logos-BofA_rgb-CSX5624a146.svg HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 128147
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "dc7-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F710)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vBZs-_c3AtHX-bP2DQcQAAAcA
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 1603
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-loader_black-CSX85ecad56.gif
192.229.133.92200 OK 4.5 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-loader_black-CSX85ecad56.gif
IP 192.229.133.92:0
File type GIF image data, version 89a, 45 x 45\012- data
Hash 1064816bae09ca9b6273d87bf9c4a7ff
9dc87e8ddd24ba835f5959d7ce16f8ab90ade9c8
3a1b52b7233dfe08972f5f53d864d752f45809f9fd298966de4802dc13bf1d77
GET /sparta/auth/enroll/spa-assets/images/assets-images-site-secure-ah-forgot-common-loader_black-CSX85ecad56.gif HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 128147
cache-control: max-age=26920000, public
content-type: image/gif
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "1193-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F71A)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vBZv7uQ6INXzyeqC3XdgAAAMU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 4499
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/platform/babel-polyfill.js
192.229.133.92200 OK 33 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/platform/babel-polyfill.js
IP 192.229.133.92:0
File type Unicode text, UTF-8 text, with very long lines (32008), with LF, NEL line terminators
Hash 9354854b95b6ca0d3f43be46511c2abf
4baca29a6ddf56d0d6f03280419c59293a31940a
49875c9b95c9af0a972df0cedc11061f5c68aeab55c689ac99ba4eeb1c3a4f6a
GET /sparta/auth/enroll/spa-assets/components/utilities/platform/babel-polyfill.js HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 128149
cache-control: max-age=31536000, public
content-type: application/x-javascript
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "17e38-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F70E)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vBZJ5MH1Fjjzm-L65I_AAAAlU
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 32867
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-Xmark@2x-gray-CSX98b2f672.png
192.229.133.92200 OK 2.9 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-Xmark@2x-gray-CSX98b2f672.png
IP 192.229.133.92:0
File type PNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash 0faa8ed463bd9a78b0f12188a85d6cfb
4b7fbddf4e2660f2724433eff4b6e02111b72d3b
164d28ad78b8fe33d8e42864920d7647cc505b93b3fd266f0d66e63c566e0ef6
GET /sparta/auth/enroll/spa-assets/images/assets-images-site-login-common-Xmark@2x-gray-CSX98b2f672.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 125821
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "b83-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F70D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vKfMliA62Ned2Z2HHLawAAAno
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 2947
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-timeout-icon_red_error-CSX50a7cb02.png
192.229.133.92200 OK 787 B URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-timeout-icon_red_error-CSX50a7cb02.png
IP 192.229.133.92:0
File type PNG image data, 39 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash be6958b211ca86111fabef07c41e7fc5
ad48bf6257dfafcd2629f8ac05f3d50acd8e8075
e370992dd3acb665187ed9eefaf8de0102db12b22153de534ac8c019d0b84136
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-timeout-icon_red_error-CSX50a7cb02.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 128147
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "313-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F6FC)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vBZjXbFeQ2tlLoUTAQhAAAAeM
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 787
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash aaaf45c4978db3dbb59b14834cede03c
9533756839b49c15a64d39e71996f5c50f460d41
9fa3506305193b8e129eae96f5ce338d04e993b2c5786132cf78b997dd7618d4
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "9FA3506305193B8E129EAE96F5CE338D04E993B2C5786132CF78B997DD7618D4"
Last-Modified: Fri, 03 Feb 2023 19:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3185
Expires: Sat, 04 Feb 2023 02:26:50 GMT
Date: Sat, 04 Feb 2023 01:33:45 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15090
Expires: Sat, 04 Feb 2023 05:45:15 GMT
Date: Sat, 04 Feb 2023 01:33:45 GMT
Connection: keep-alive
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-header-lock-CSX1f35fd71.png
192.229.133.92200 OK 52 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-header-lock-CSX1f35fd71.png
IP 192.229.133.92:0
File type PNG image data, 10 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash a86676a23cf698c92603069a6ee6dc65
54e430c27af1b2bc1cde3b7f4e5cbfe51aaf99e6
38fc756dfdd0689c674e787e6e030549f7f3856e533350aabeb46cce0d2b9b77
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-header-lock-CSX1f35fd71.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 125821
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "cc36-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F6FD)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vKfJ5MH1Fjjzm-L65QtgAAAhg
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 52278
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-footer-eha_logo_1x-CSXc5bd9130.png
192.229.133.92200 OK 343 B URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-footer-eha_logo_1x-CSXc5bd9130.png
IP 192.229.133.92:0
File type PNG image data, 12 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash c577e2bea8cf9b70cc39827debe61198
0b78f70baeed5b061f0d08127d262368da3e62a1
35a77234f396ce2e5cc205ab9dd78c0cef11eaf14e4ef92bb910243021e83147
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-footer-eha_logo_1x-CSXc5bd9130.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 128147
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "157-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F716)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vBZutjw5bRpHl5lNHkBQAAAes
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 343
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js
104.17.25.14200 OK 2.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js
IP 104.17.25.14:0
Hash 25ba6cf71f56fb6f70738a4a73257a10
95b2f9d962ad149cb94f336a69c2627e94f1eb43
907bed0c556e0dd60a67eca19c4d684445a4e3d45af5e78a1320fa35777894da
GET /ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:33:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 2306
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-284d"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 789366
expires: Thu, 25 Jan 2024 01:33:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V9wkeV3X5eWWjL%2BiHeE8YZbUfzvHPOwrzIjaNd6VLX14n11jleegFI5oYgHcG%2BvEXVT5E7xo45LsB00heAY2F6fvRBwvR%2F9G1HysIwk26c5QyjuRN54k3Bc5W0KmA%2FWozBoNyIge"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793fa8f77e36b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash bd996a14a836cafb5524b40b3680906e
8a15e7d082309048f1b7cca2f95a927c9fd4311d
1aacdadf7ad365211432d60a05d59fbdd439af3f27b0e08f52a20242cfe38ba3
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1AACDADF7AD365211432D60A05D59FBDD439AF3F27B0E08F52A20242CFE38BA3"
Last-Modified: Fri, 03 Feb 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2127
Expires: Sat, 04 Feb 2023 02:09:12 GMT
Date: Sat, 04 Feb 2023 01:33:45 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8e4b7b47ed75e9e975adc9fc304e3219
0b4f8dacc8685161103a352dd4221f69aa111626
852df028f28349db72a347eb3627f3f102c4e4dd6418cbdba6b94e44092ab43f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3311
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:33:45 GMT
Last-Modified: Sat, 04 Feb 2023 00:38:34 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
52.215.109.101200 OK 104 B URL HTTP/1.1 dpm.demdex.net/id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2
IP 52.215.109.101:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90a8ce4aa172e4b63430c93639257805
d30e7b2034df83180b28f024556a5534dce531c3
093ac6be731cba244fff837ea4fa57ab36e1fde5a5a53d9b36a467184eae87f5
GET /id?d_orgid=A9893BC75245B1D70A490D4D@AdobeOrg&d_ver=2 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://acount-management-and-update-of-security.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-09f6df340.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 198
X-TID: g+4a/dvnSjY=
Content-Length: 104
Connection: keep-alive
sofa.bankofamerica.com/cookie-id.js?fn=saveCMCookieToDDO
3.86.136.12200 OK 65 B URL HTTP/1.1 sofa.bankofamerica.com/cookie-id.js?fn=saveCMCookieToDDO
IP 3.86.136.12:0
File type ASCII text, with no line terminators
Hash d2673e00a77d014384b757ea9778795a
e969e2f948253544a72f74de9e0cab193415594a
51f380e4abbdf4b680c54f673835d4dd976e5355955a71f3b12191dbff588a82
GET /cookie-id.js?fn=saveCMCookieToDDO HTTP/1.1
Host: sofa.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:33:45 GMT
Server: Apache
Vary: Host
Content-Length: 65
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Connection: close
Content-Type: application/x-javascript
aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0EwJTJDJTIyY251bSUyMiUzQTIlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MTclMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTY2MDI4NSU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=zsgobwxvdfqlsprr&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
3.95.146.123200 OK 0 B URL HTTP/2 aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0EwJTJDJTIyY251bSUyMiUzQTIlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MTclMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTY2MDI4NSU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=zsgobwxvdfqlsprr&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
IP 3.95.146.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0EwJTJDJTIyY251bSUyMiUzQTIlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MTclMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTY2MDI4NSU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=zsgobwxvdfqlsprr&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:33:45 GMT
content-type: text/html
content-length: 0
server: haile
set-cookie: LSESSIONID=deleted;domain=.bankofamerica.com;path=/;expires=Thu, 01 Jan 1970 00:00:01 GMT;
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0EwJTJDJTIyY251bSUyMiUzQTQlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MjklMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTg5MTYxMyU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=rvwlzqntgrpddkfz&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
3.95.146.123200 OK 0 B URL HTTP/2 aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0EwJTJDJTIyY251bSUyMiUzQTQlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MjklMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTg5MTYxMyU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=rvwlzqntgrpddkfz&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
IP 3.95.146.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0EwJTJDJTIyY251bSUyMiUzQTQlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MjklMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTg5MTYxMyU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=rvwlzqntgrpddkfz&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:33:45 GMT
content-type: text/html
content-length: 0
server: haile
set-cookie: LSESSIONID=deleted;domain=.bankofamerica.com;path=/;expires=Thu, 01 Jan 1970 00:00:01 GMT;
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTUlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MzklMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTY1NTQwNyU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=y_nblagxgwfsmdtv&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
3.95.146.123200 OK 0 B URL HTTP/2 aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTUlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MzklMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTY1NTQwNyU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=y_nblagxgwfsmdtv&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
IP 3.95.146.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTUlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MzklMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTY1NTQwNyU3RCU3RCU1RA%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=y_nblagxgwfsmdtv&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:33:45 GMT
content-type: text/html
content-length: 0
server: haile
set-cookie: LSESSIONID=deleted;domain=.bankofamerica.com;path=/;expires=Thu, 01 Jan 1970 00:00:01 GMT;
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
tags.tiqcdn.com/dle/bofa/main/prod-_-bank%20of%20america%20|%20online%20banking%20|%20verify%20your%20identity.js
23.38.200.249200 OK 3 B URL HTTP/2 tags.tiqcdn.com/dle/bofa/main/prod-_-bank%20of%20america%20|%20online%20banking%20|%20verify%20your%20identity.js
IP 23.38.200.249:0
Hash b519d08ef66fd54910edbedba6181ec2
8d06436c33a3086259f2f1ccaf03425707eeff17
101ead936a2281d53dcc064b7e2a2ab0d53b92ef3ef7b34b668673007895c860
GET /dle/bofa/main/prod-_-bank%20of%20america%20|%20online%20banking%20|%20verify%20your%20identity.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: MnMdkfPtmfGVSb2iJ9R3SG5a1Eby0EfHY21Rirrr48pN9w+2ivldofdWW3zfmu4Afp9MeausmYg=
x-amz-request-id: 36Y77BQ6QTYMB4M5
last-modified: Thu, 02 Feb 2017 22:12:19 GMT
etag: "b519d08ef66fd54910edbedba6181ec2"
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
content-length: 3
cache-control: max-age=300
expires: Sat, 04 Feb 2023 01:38:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTMlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MjIlMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTU5MzAyJTdEJTdEJTVE&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=d_kpmgkvycaobzog&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
3.95.146.123200 OK 0 B URL HTTP/2 aero.bankofamerica.com/30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTMlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MjIlMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTU5MzAyJTdEJTdEJTVE&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=d_kpmgkvycaobzog&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F
IP 3.95.146.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /30306/C5ib?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZzZWN1cmUuYmFua29mYW1lcmljYS5jb20lMkZhdXRoJTJGZW5yb2xsJTJGZW5yb2xsLWVudHJ5JTJGJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGd3d3LmJhbmtvZmFtZXJpY2EuY29tJTJGJTIyJTJDJTIycGlkJTIyJTNBOTYyNzA3NzgxJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTMlMkMlMjJ0cyUyMiUzQTE1ODQ4MDU1MjIlMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmNoYW5nZV9kZXRhaWxzJTIyJTdEJTJDJTIycmFuZCUyMiUzQTU5MzAyJTdEJTdEJTVE&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=jLd1oKQU64Ehdi2GJhwh3jsPov%2BSoX%2FdUki2EXavFtPX08UvNcNz48K7Y3CL1oAPQEqWHKQghBYULlKXeg%3D%3D&t=jsonp&__tp=change_details&c=d_kpmgkvycaobzog&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Fauth%2Fenroll%2Fenroll-entry%2F HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:33:45 GMT
content-type: text/html
content-length: 0
server: haile
set-cookie: LSESSIONID=deleted;domain=.bankofamerica.com;path=/;expires=Thu, 01 Jan 1970 00:00:01 GMT;
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.81.158.34101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.81.158.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iRZMfAsAuPskqD9nC//a/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AGrgVKQsXugWX4Ed2NUt4JxhU58=
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-header-secure-lock-CSXa09bf5fc.svg
192.229.133.92200 OK 257 B URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-header-secure-lock-CSXa09bf5fc.svg
IP 192.229.133.92:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (353), with no line terminators
Hash f7b7b471074c1b70613c4e7372a54d11
33b0c1c900471bb51eb17250a44f5af9e0c410b0
5b5b1d5852445084f5061b607d21702ddfcc1b67eec76aa6cd610c42b1a9cc85
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-header-secure-lock-CSXa09bf5fc.svg HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 125821
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "161-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F71C)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vKfPCmLp6WF5LFCg2yDAAAAg8
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 257
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-title-flagscape_red-CSX345e7fd7.svg
192.229.133.92200 OK 1.2 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-title-flagscape_red-CSX345e7fd7.svg
IP 192.229.133.92:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1709)
Hash cf9353dda4f03236b0404e784729d26c
1860bf478017fad5598ef39c8a69df789679b2d0
39c4b155e3d3ff2ca548cf534afa641b3d961868cf96ab03ad3e9a11d3cadc43
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-title-flagscape_red-CSX345e7fd7.svg HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 125821
cache-control: max-age=26920000, public
content-type: image/svg+xml
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "84c-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F706)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vKfJb4529BW6jQWYkjFAAAAj0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 1201
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2
192.229.133.92200 OK 12 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2
IP 192.229.133.92:0
File type Web Open Font Format (Version 2), TrueType, length 11608, version 1.197\012- data
Hash 46b5329e8e4e5925129ab2c36b336d0f
63cd5fbcbe5331e7d8059a4caee8d2510f834d68
79f02d139cfd07f2a19e0a8831553b3de4627fcab371e18eb776af035465949b
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2 HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 126826
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "2d58-5991547a657c0"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Sat, 07 Dec 2019 04:05:59 GMT
server: ECS (ska/F70F)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vGj6DjTjahpHocWZbYDgAAAjg
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11608
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff2
192.229.133.92200 OK 12 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff2
IP 192.229.133.92:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.197\012- data
Hash 79e7bc718644146e98b5d55f19c8ed4a
9d0c5c674b242443a055a654e1ef0fa0e31642e2
d48faa13adcd567a29299db487912dd91fd45f777cadf153520f52023b58cee7
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff2 HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 126826
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "2e18-5991547789100"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Sat, 07 Dec 2019 04:05:56 GMT
server: ECS (ska/F715)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vGj4NZKvSSzeIl91v9zwAAAj0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11800
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2
192.229.133.92200 OK 12 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2
IP 192.229.133.92:0
File type Web Open Font Format (Version 2), TrueType, length 11984, version 1.197\012- data
Hash 50d39f33c7179280df5acb6a5bb2716b
eb19d2940c727bb4e7f66e1e5c89ecff30725875
a431986817e5d309cdd61c623a5259d6ea5840375876ffb41f5a2cab65ddd2e3
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2 HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 126826
cache-control: max-age=31536000, public
content-type: application/font-woff2
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "2ed0-5991547971580"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Sat, 07 Dec 2019 04:05:58 GMT
server: ECS (ska/F717)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vGj7fomlriXoS-EcyyYwAAAXw
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 11984
X-Firefox-Spdy: h2
public.cobrowse.oraclecloud.com/rely/storage/ll_storage_html5.html?context=nm0o770yj1c&version=20180716
104.110.2.75200 OK 12 kB URL HTTP/2 public.cobrowse.oraclecloud.com/rely/storage/ll_storage_html5.html?context=nm0o770yj1c&version=20180716
IP 104.110.2.75:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (43766)
Hash 9466edea5b690a8dcc94a8aee5255448
8200790330fb146fdc254fb694871e0e9d73e974
f59a6c07012c632c6d0014640439abdd1e0de1f6b4cb557c43531c43af88d24c
GET /rely/storage/ll_storage_html5.html?context=nm0o770yj1c&version=20180716 HTTP/1.1
Host: public.cobrowse.oraclecloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "b7b7e70ac037b592aef8c274d8e66a71:1634875896.03281"
last-modified: Thu, 21 Oct 2021 23:11:35 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 11698
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.21.js?utv=ut4.48.202211112233
23.38.200.249200 OK 4.3 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.21.js?utv=ut4.48.202211112233
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash 35990d88cc04ea68fb36e70b73e03d3f
5e391a001f7d23b0f5741b2d9533a2e90a492df4
52dea8d8a13bce5b9a2910a2adbcdd19f13f086875db182c36df6965d26d4fe9
GET /utag/bofa/main/prod/utag.21.js?utv=ut4.48.202211112233 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4133517b38ec42e8d243dbecf26a85e3:1670628828.593009"
last-modified: Fri, 09 Dec 2022 23:33:48 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 4309
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.35.js?utv=ut4.48.202205202119
23.38.200.249200 OK 16 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.35.js?utv=ut4.48.202205202119
IP 23.38.200.249:0
File type HTML document, ISO-8859 text, with very long lines (17955)
Hash 1614f62157c8cf7d9e30cdfaef74c65a
f517d2b542b7dcb2b620b11783cd74a803f9600a
1568334fceeeee34a7046c0886c71620be6fba1de1b0405453f2d0246ff03e82
GET /utag/bofa/main/prod/utag.35.js?utv=ut4.48.202205202119 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d2f73274b760bd40af2600daf8deed5e:1670628829.648845"
last-modified: Fri, 09 Dec 2022 23:33:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 16235
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.36.js?utv=ut4.48.202211112233
23.38.200.249200 OK 6.5 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.36.js?utv=ut4.48.202211112233
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash 98b6bb581ce8595f86026d6b2001e515
10aa183351a281a27eecb586a1ab477a440c179b
30a162bc990870c9d137e387df11f86ea193131459f6d91da811dad36d4457d9
GET /utag/bofa/main/prod/utag.36.js?utv=ut4.48.202211112233 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c8c67ebb7738e076610c1534cb00694e:1670628831.783079"
last-modified: Fri, 09 Dec 2022 23:33:51 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 6517
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.37.js?utv=ut4.48.202211112233
23.38.200.249200 OK 2.8 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.37.js?utv=ut4.48.202211112233
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash 46941fc3f53af5fee316edd67f06abcf
b288ab79225f324771b24124c68b2dde9fbf80c1
857b873be1e8825da026c8005b7ef8b0e438ec017c94a77a2a84d199fc2cd6d0
GET /utag/bofa/main/prod/utag.37.js?utv=ut4.48.202211112233 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c16027e413f2714aa6ae3a226a8aa6a0:1670628829.322912"
last-modified: Fri, 09 Dec 2022 23:33:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 2783
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.js
23.38.200.249200 OK 74 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.js
IP 23.38.200.249:0
File type ASCII text, with very long lines (364)
Hash ed8c74a9f1f85c79ddd0444e56b13617
d39c2bd9aa5074a6ed27b6143d72f35ed91d0556
d61db8202c3226aeef7a486ae18db3b649b86ec9839b83ed59c0eaf5877b8731
GET /utag/bofa/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "06f278fcd83e39ddb6310d252454e496:1670628831.947296"
last-modified: Fri, 09 Dec 2022 23:33:51 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Sat, 04 Feb 2023 01:38:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.55.js?utv=ut4.48.202212092333
23.38.200.249200 OK 8.1 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.55.js?utv=ut4.48.202212092333
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash 15c65411e3e893ac0f0656b1276f8a26
b802cc126905281da8921f913ae3d590aa90c54d
e12602b5dae9b42b31c712da996e7ac26f25b33a26d4441c994eb4a8c8541f8f
GET /utag/bofa/main/prod/utag.55.js?utv=ut4.48.202212092333 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "f35ca5ded05c2670717b3e00070b6a17:1670628827.780591"
last-modified: Fri, 09 Dec 2022 23:33:47 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 8116
X-Firefox-Spdy: h2
acount-management-and-update-of-security.com/images/cont.png
192.185.46.63200 OK 1.2 kB URL HTTP/2 acount-management-and-update-of-security.com/images/cont.png
IP 192.185.46.63:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 120 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 76b3be12495c3bfbff557f9c4e8f5ef5
675584d83f43110af13ba60936073ddb435927bc
f7dfb7dcebfc42b969f996d08b96b8fc531ef67cf990669de50f8d10f6cf6c30
Analyzer Verdict Alert openphish Bank of America
GET /images/cont.png HTTP/1.1
Host: acount-management-and-update-of-security.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/step5.htm?cmd=login_submit&id=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a&session=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a
Cookie: bactm_lts=%7B%22adobeMID%22%3A%7B%22errors%22%3A%5B%7B%22code%22%3A198%2C%22msg%22%3A%22Requests%20from%20this%20country%20are%20blocked%20by%20partner%22%7D%5D%7D%7D; utag_main=v_id:01861a0f59950020bcfb41582f8c0005000dc00900918$_sn:1$_se:1$_ss:1$_st:1675476259030$ses_id:1675474459030%3Bexp-session$_pn:1%3Bexp-session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Mar 2020 01:01:36 GMT
accept-ranges: bytes
content-length: 1179
content-type: image/png
date: Sat, 04 Feb 2023 01:33:45 GMT
server: Apache
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.65.js?utv=ut4.48.202205202119
23.38.200.249200 OK 13 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.65.js?utv=ut4.48.202205202119
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash e60374467fb5f28bfd6e70e5b5481dc7
20a746971b64433cc370f378a5040e7b1f2293d4
98caf4e94955601f74de12720215954745e3c0c56b73f7411a31bd8e5b2526d1
GET /utag/bofa/main/prod/utag.65.js?utv=ut4.48.202205202119 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c278398091a58d113f4267dd822c6de4:1670628828.189766"
last-modified: Fri, 09 Dec 2022 23:33:48 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 12737
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.72.js?utv=ut4.48.202211112233
23.38.200.249200 OK 2.9 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.72.js?utv=ut4.48.202211112233
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash 6700d3194c5467d3536a2e699ab51bcc
5f99be24851c5f43539b3722541c511252ad7b04
96c3f1baca086ad28e91580a574476f8b63535fca398318329d927c29afb683c
GET /utag/bofa/main/prod/utag.72.js?utv=ut4.48.202211112233 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "06a8791e2512054eefdb11af04bf789c:1670628828.762891"
last-modified: Fri, 09 Dec 2022 23:33:48 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 2902
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.102.js?utv=ut4.48.202212092333
23.38.200.249200 OK 3.1 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.102.js?utv=ut4.48.202212092333
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash a45e79b0ab1c204fe371e427c6916013
2323b1d5e422d664382f5ce0784844e204118812
751806c08e219523a69071b234b0cf495f852dde7ad5234cfd4fad616c67ff06
GET /utag/bofa/main/prod/utag.102.js?utv=ut4.48.202212092333 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "a3329185b3eb1c603312faccb2ff3acd:1670628830.033839"
last-modified: Fri, 09 Dec 2022 23:33:50 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
content-length: 3146
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff
192.229.133.92200 OK 16 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff
IP 192.229.133.92:0
File type Web Open Font Format, TrueType, length 15648, version 1.0\012- data
Hash db12fee09df2fe82185361bef82283f7
9634aa7fe9c8a30bb8e6cfd8274841376e21d5bb
6b0a734c5d1f0eb6a65da6e72b8cb2b57f4df5f3fb24cd2fd39bd34aa8284478
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 126825
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "3d20-5991547a657c0"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Sat, 07 Dec 2019 04:05:59 GMT
server: ECS (ska/F706)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vGkdXruvt8DwzSjXeROwAAAg0
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15648
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff
192.229.133.92200 OK 16 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff
IP 192.229.133.92:0
File type Web Open Font Format, TrueType, length 15920, version 1.0\012- data
Hash e5c808f05ff56b6ad54c51b2f3dc308a
b0e61bf5f1eb0aa2ee19be3645edabd0d68cdc9f
d91d3ce91a4e63475ad24023d5697eb570499ff65bd342768b4b3077f7e517c1
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.woff HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 126825
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "3e30-5991547789100"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Sat, 07 Dec 2019 04:05:56 GMT
server: ECS (ska/F705)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vGketjw5bRpHl5lNHkHAAAAYQ
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15920
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff
192.229.133.92200 OK 16 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff
IP 192.229.133.92:0
File type Web Open Font Format, TrueType, length 15992, version 1.0\012- data
Hash 128668a075c4f264d2e981b8b209b3d9
66e16397d123a07d1f9b3cc5fc816b0f86d0e4f5
66012a69bf24d036818928db1858817600cd028616d8adddc7f3de5936453fec
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 126825
cache-control: max-age=31536000, public
content-type: application/font-woff
date: Sat, 04 Feb 2023 01:33:45 GMT
etag: "3e78-5991547971580"
expires: Sun, 04 Feb 2024 01:33:45 GMT
last-modified: Sat, 07 Dec 2019 04:05:58 GMT
server: ECS (ska/F70F)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vGkJvMBeZD9T73lNvENgAAAis
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15992
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=bofa/main/202212092333&cb=1675474459469
23.38.200.249200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=bofa/main/202212092333&cb=1675474459469
IP 23.38.200.249:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=bofa/main/202212092333&cb=1675474459469 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
cache-control: max-age=600
expires: Sat, 04 Feb 2023 01:43:46 GMT
date: Sat, 04 Feb 2023 01:33:46 GMT
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf
192.229.133.92200 OK 16 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf
IP 192.229.133.92:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 1d946121f832012245ac3e6d5db32a20
618ad569442fdfb88dd3e7889995167ae57e305a
566ce6dcb452ef59f616479b89df958f60c208e8d8fcb9502fdd7b7b9d13a6b0
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 126824
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Sat, 04 Feb 2023 01:33:46 GMT
etag: "70ac-5991547a657c0"
expires: Sun, 04 Feb 2024 01:33:46 GMT
last-modified: Sat, 07 Dec 2019 04:05:59 GMT
server: ECS (ska/F70F)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vGktXruvt8DwzSjXeRPAAAAgw
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15479
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.ttf
192.229.133.92200 OK 16 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.ttf
IP 192.229.133.92:0
File type TrueType Font data, 17 tables, 1st "FFTM", 19 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 0dc02956bdbb283ad3e4458415cdcf68
b9764655cdd73c70b2059201e1cfcfa2e3096541
bd97fc4e8fd50f25e67e928b0a86a91e4d5db3c393b746d536fd0ea7687b9e5f
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-bold/cnx-bold.ttf HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 126824
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Sat, 04 Feb 2023 01:33:46 GMT
etag: "72c0-5991547789100"
expires: Sun, 04 Feb 2024 01:33:46 GMT
last-modified: Sat, 07 Dec 2019 04:05:56 GMT
server: ECS (ska/F705)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vGko51glyofSsPSkGkDgAAAbE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15737
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf
192.229.133.92200 OK 16 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf
IP 192.229.133.92:0
File type TrueType Font data, 17 tables, 1st "FFTM", 17 names, Microsoft, language 0x409, Copyright (c) 2013 Parachute\256. Exclusively designed for the Bank of America. All rights reser\012- data
Hash 150378dcf7fda416b461bdf93d27720a
e5024f2fc8b091c7eb8d2eedae55bdc761e703ab
7181c5de10a1a490600afe7bc3ea0a64dce35f34a6568681692c183e7b8c6654
GET /sparta/auth/enroll/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 126824
cache-control: max-age=31536000, public
content-type: application/font-sfnt
date: Sat, 04 Feb 2023 01:33:46 GMT
etag: "7110-5991547971580"
expires: Sun, 04 Feb 2024 01:33:46 GMT
last-modified: Sat, 07 Dec 2019 04:05:58 GMT
server: ECS (ska/F713)
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-boa-requestid: Y9vGkgg3W7ru3K67NdYPJQAAARc
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 15833
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.108.js?utv=ut4.48.202212092333
23.38.200.249200 OK 3.4 kB URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.108.js?utv=ut4.48.202212092333
IP 23.38.200.249:0
File type HTML document, ASCII text, with very long lines (1164)
Hash 2fbc428b775e599e7391c958389318f5
1b7560e25709a40e824012f18bb9d4114d349eb3
af4821ca8b358572cf5b5f09f51b75ef04887436cf8836a62ef0252d5949bb72
GET /utag/bofa/main/prod/utag.108.js?utv=ut4.48.202212092333 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "81a8240c8b61930d8747f5fc78c0e42f:1670628830.414022"
last-modified: Fri, 09 Dec 2022 23:33:50 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:46 GMT
date: Sat, 04 Feb 2023 01:33:46 GMT
content-length: 3418
X-Firefox-Spdy: h2
202.29.22.167/arcmforum/adm/style/submit2.png
202.29.22.167200 OK 658 B URL HTTP/1.1 202.29.22.167/arcmforum/adm/style/submit2.png
IP 202.29.22.167:0
ASN #132879 Rajabhat Mahasarakham University
File type PNG image data, 282 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 3796e45e038fbc2fa3df8314c7f4fb5f
de899f9391f078343b7ddfd7f9aec6f2c97fa15f
d7550418dacf37a73a469fde15c7f42ab5a497040ea5900221ec77d7ce726dbd
Analyzer Verdict Alert quad9 Sinkholed
GET /arcmforum/adm/style/submit2.png HTTP/1.1
Host: 202.29.22.167
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:34:11 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Mon, 09 Dec 2019 05:06:52 GMT
ETag: "292-5993e5d1f0c19"
Accept-Ranges: bytes
Content-Length: 658
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png
192.229.133.92200 OK 8.4 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png
IP 192.229.133.92:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 67af3bbd46f9947739538d49395d573d
03a34b0aa432274f88862b27ab109f8e26311e72
b47bfe9d7333188f5b2f8690785ccd966d882c2364a5e4e5ae293e02554ad8d8
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-favicon-android-chrome-192x192-CSXafb7d716.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 127966
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:46 GMT
etag: "20a2-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:46 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F70B)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vCHVFJwzUP7p98mvcw4wAAAMM
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 8354
X-Firefox-Spdy: h2
secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png
192.229.133.92200 OK 15 kB URL HTTP/2 secure2.bac-assets.com/sparta/auth/enroll/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png
IP 192.229.133.92:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash cb64c30b1249dbac9691a3a2cc418631
2c36d5247a84049dea63ced5ad35666d6589413e
9a092ddd265dc1651c83cdbd0e7d5d523dc51c3cacfc9b4ec98a6ddb58ee364e
GET /sparta/auth/enroll/spa-assets/images/assets-images-global-favicon-favicon-16x16-CSXaaa5ca4e.png HTTP/1.1
Host: secure2.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 127966
cache-control: max-age=26920000, public
content-type: image/png
date: Sat, 04 Feb 2023 01:33:46 GMT
etag: "39d3-58bc25f0a9a80"
expires: Sun, 04 Feb 2024 01:33:46 GMT
last-modified: Thu, 20 Jun 2019 14:43:38 GMT
server: ECS (ska/F70D)
strict-transport-security: max-age=31536000
x-boa-requestid: Y9vCHRqC3x8L4t0nVIm9mwAAAmM
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 14803
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 9eeeffdd81338c7e8925c8a41713900d
29a7974cb3744ca30947d22354555d17d03d06d3
710ca7d27b4a62ff3638b0cb6a7de32f62a2545ca9b1ca2fc6d0b48a9e2b9757
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "710CA7D27B4A62FF3638B0CB6A7DE32F62A2545CA9B1CA2FC6D0B48A9E2B9757"
Last-Modified: Fri, 03 Feb 2023 19:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3082
Expires: Sat, 04 Feb 2023 02:25:08 GMT
Date: Sat, 04 Feb 2023 01:33:46 GMT
Connection: keep-alive
tilt.bankofamerica.com/0827/handler9/session.json
171.161.100.28403 Forbidden 0 B URL HTTP/1.1 tilt.bankofamerica.com/0827/handler9/session.json
IP 171.161.100.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /0827/handler9/session.json HTTP/1.1
Host: tilt.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1106
Origin: https://acount-management-and-update-of-security.com
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Sat, 04 Feb 2023 01:33:46 GMT
X-Content-Type-Options: nosniff
Content-Length: 0
X-SZ-Serviced-By: xoKb2VSSwGdx8EMDMRFglA==--MlM5L5NDxR05pIMpEElVmw==
Keep-Alive: timeout=30, max=209
Connection: Keep-Alive
X-Serviced-By: p1QJ6sIWfR3ICxeDd3v+Qw==--66iB8mv+JEjgrOMOIrTFhg==
Strict-Transport-Security: max-age=31536000
Set-Cookie: SID=0004DD507E0063DDB5FA;Path=/
TS010e5239=010d221be1ac85bfceeda254a5f316facf1c0bec49aabf7828a709b65b273b5cbfffc630525c4d5f7119df6da6311f01062852047c; Path=/; Secure; HTTPOnly
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9216
Expires: Sat, 04 Feb 2023 04:07:23 GMT
Date: Sat, 04 Feb 2023 01:33:47 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9216
Expires: Sat, 04 Feb 2023 04:07:23 GMT
Date: Sat, 04 Feb 2023 01:33:47 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9216
Expires: Sat, 04 Feb 2023 04:07:23 GMT
Date: Sat, 04 Feb 2023 01:33:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65cd12302c9ca5468dbc9a98155970e0
a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1
8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7992
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEjGsdIAMF84w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1"
content-type: image/jpeg
age: 12206
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b5c35cdff2fb0758db780212b0b1f77
edbb557a3bf57128467335685aebbd4831d802f8
e0fa59843073ba8bd171c66610bc1b3d59a1a94c4991e6023507b9453ca0edba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9349
x-amzn-requestid: ecd1913d-7dbe-4ffd-ba85-0549aab51a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyayOGPlIAMFQ7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dda4da-6a9b8d146155fa8b6c1c02d6;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:20:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jGBEz2d-SXXPBZhwlJgR4w248y-NY2c-18euLre5PULjWUIfhfUmNQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 00:20:43 GMT
etag: "edbb557a3bf57128467335685aebbd4831d802f8"
content-type: image/jpeg
age: 4384
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F549d8f22-b421-4fad-867d-64232284ffaf.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F549d8f22-b421-4fad-867d-64232284ffaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9409d3b4b0f8f973d9acab2b744d8dd0
15431d807c3fe818a9b363f1c725c1860e939799
ddde1e1c8faef040370396ccda3a5090e64b63a1bddbe642c128d66849c1caa4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F549d8f22-b421-4fad-867d-64232284ffaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: a9d4782b-b24e-4b72-9994-b9efa680c2fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEOHxIoAMFvUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8081-1d17982c4fe45adf0704f4c4;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VkajXQ1KEbO3T3sVDkH6XLx7pKr5cnHC2QOsR1EvKa7-8WPQrVFbXw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
etag: "15431d807c3fe818a9b363f1c725c1860e939799"
content-type: image/jpeg
age: 12206
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:05 GMT
age: 13542
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 518bba9a8770e8ff15229a68be5bddc3
139f944b3f4279e640901f7a6b993f1a49b51a22
0591e73dec2190752677f06525bc993dc8c7a5aa20984a5eda64c323188e2b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9743
x-amzn-requestid: b6c1caa9-72e4-476f-9c3d-4a746c410ba3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHLJoAMF_TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-1289ef383fbad59621eda6d0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nIp2nUVnamnoTpFwrN1L4K1dqjYvcDGuV2yFqYskkXb14k72AZsjMg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:08:41 GMT
age: 12306
etag: "139f944b3f4279e640901f7a6b993f1a49b51a22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
age: 10991
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
acount-management-and-update-of-security.com/step5.htm?cmd=login_submit&id=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a&session=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a
192.185.46.63200 OK 0 B URL HTTP/2 acount-management-and-update-of-security.com/step5.htm?cmd=login_submit&id=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a&session=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a
IP 192.185.46.63:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert openphish Bank of America
GET /step5.htm?cmd=login_submit&id=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a&session=94c23a79f31f654b675f622a78673b8a94c23a79f31f654b675f622a78673b8a HTTP/1.1
Host: acount-management-and-update-of-security.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 13:25:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
date: Sat, 04 Feb 2023 01:33:44 GMT
server: Apache
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.76.js?utv=ut4.48.202211112233
23.38.200.249200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.76.js?utv=ut4.48.202211112233
IP 23.38.200.249:0
GET /utag/bofa/main/prod/utag.76.js?utv=ut4.48.202211112233 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "cdbf8973e259be6d03607db128b17651:1670628829.498984"
last-modified: Fri, 09 Dec 2022 23:33:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/bofa/main/prod/utag.62.js?utv=ut4.48.202205202119
23.38.200.249200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/bofa/main/prod/utag.62.js?utv=ut4.48.202205202119
IP 23.38.200.249:0
GET /utag/bofa/main/prod/utag.62.js?utv=ut4.48.202205202119 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acount-management-and-update-of-security.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "3de3fd0ab9ae3232eca93a0bb9c6c080:1670628829.149142"
last-modified: Fri, 09 Dec 2022 23:33:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Sun, 19 Feb 2023 01:33:45 GMT
date: Sat, 04 Feb 2023 01:33:45 GMT
X-Firefox-Spdy: h2