Summary
A Concise Overview of the scan result of url https://olui2.fs.ml.com/login/signin.aspx?TYPE=33554433&REALMOID=06-1d453033-6fa8-4647-8842-41ab72c4d847&GUID=&SMAUTHREASON=0&METHOD=GET&SMAGENTNAME=$SM$QZw7BGAC3Tdq21VR6CSeI4meOq6u8cYzrFElDP7Qg%2fv%2f1U%2bpCmPZuzS2uot1uHee&TARGET=$SM$HTTPS%3a%2f%2folui2%2efs%2eml%2ecom%2fSMCUI%2fsmc%2easpx%3fmsgid%3d
- Document
- HTML
- 4
- StyleSheets
- 4
- Scripts
- 29
- Font
- 0
- Images
- 34
- Links
- 38
- JavaScript Variables
- 1122
- Console log messages
- 0
- Network
- Requests
- 96
- Bytes Transferred
- 9.06MB
- Bytes Total
- 18.54MB
- DNS Record
- CNAME Record
- 2
- A Record
- 1
- Technology
- UI frameworks
- 1
- Web frameworks
- 1
- Reverse proxies
- 1
- PaaS
- 1
- JavaScript frameworks
- 1
- Tag managers
- 1
- Customer data platform
- 1
- Cookie compliance
- 1
- Security
- 1
- CDN
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|---|
javascript:void(0); | Your Privacy Choices |
http://www.ml.com/privacy | Privacy Policy |
tel:8009336262 | 800.933.6262 |
https://secure.bankofamerica.com/auth/third-party-maint/forgot/ | Forgot IDForgot ID |
https://secure.bankofamerica.com/auth/third-party-maint/reset/ | Reset PasscodeReset Password |
https://auth.privatebank.bankofamerica.com/sve/pages/ecmsmodalpopup.aspx?Type=Global_TC_UST&doDomainSync=false&bid=bmpExt | Private Bank Online Service Agreement |
https://www.bankofamerica.com/online-banking/service-agreement.go | Online Banking Service Agreement |
https://www.ml.com/articles/tax-smart-investing-strategies.html?dtc-nonseg=true&utm_source=mymerrill&utm_medium=mainstage&utm_campaign=taxaware24#financial-research-and-insights | See 5 tips now |
https://www.ml.com/articles/new-ways-to-save-for-retirement.html?dtc-nonseg=true&utm_source=mymerrill&utm_medium=tile&utm_campaign=7ways | See 7 new opportunities |
https://www.ml.com/privacy-and-security-center/avoid-bank-scams.html?dtc-nonseg=true&utm_source=mymerrill&utm_medium=tile&utm_campaign=scams | Get started |
https://www.ml.com/articles/lets-talk-alts.html?no-lending=true&utm_source=mymerrill&utm_medium=tile&utm_campaign=altinvest | Watch now |
https://www.bankofamerica.com/deposits/bank-cds/cd-accounts/?utm_source=mymerrill&utm_medium=tile&utm_campaign=deposits | Learn more |
https://www.bofaml.com/content/boaml/en_us/home.html | Corporations& Institutions |
https://www.ml.com/merrill-lynch-careers.html | Job Seekers |
http://newsroom.bankofamerica.com/ | Media& Journalists |
http://investor.bankofamerica.com/ | Shareholders |
https://www.ml.com/solutions/understanding-our-services-and-fees-when-you-work-with-an-advisor.html | Form CRS& Other Resources |
https://www.ml.com/about-merrill-lynch.html | About Us |
https://www.ml.com/working-with-merrill-lynch-financial-advisor.html | Working With Us |
https://www.ml.com/solutions.html | Our Solutions |
https://www.ml.com/financial-research-and-insights/all.html | Research& Insights |
https://www.ml.com/social-media.html | Merrill Social Media |
https://www.ml.com/contact-us.html | Contact Us |
https://www.ml.com/legal.html | Legal Information |
https://www.ml.com/privacy-and-security-center/privacy-and-security.html | Privacy |
https://www.ml.com/privacy-and-security-center/how-we-protect-you.html | Security |
https://www.bankofamerica.com/accessiblebanking/state-select.go | Web Accessibility |
https://locators.bankofamerica.com/locator/locator/ParseAction.do | ATM Locator |
https://www.ml.com/mlpfs-financial-information.html | Financial Information |
https://www.ml.com/legal.html#tag2 | Routing& Executions |
https://www.ml.com/privacy-and-security-center/business-continuity-planning.html | Business Continuity |
https://www.bankofamerica.com/company/patents/ | patents.bankofamerica.com |
https://business.bofa.com/en-us/content/global-privacy-notices.html | Institutional Privacy |
https://www.bankofamerica.com/security-center/privacy-overview/ | Consumer Privacy |
https://secure.bankofamerica.com/customer/public/privacy.go? request_locale=en-US | Privacy Page. |
https://www.bankofamerica.com/security-center/ccpa-disclosure/ | California Consumer Privacy Act Notice. |
https://secure.bankofamerica.com/customer-preferences/public/personal-information-request/#!/page1/ | CA Personal Information Request form. |
https://www.onetrust.com/products/cookie-consent/ | Powered by OneTrust Opens in a new Tab |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
JavaScript frameworks | ||
RequireJS | RequireJS is a JavaScript library and file loader which manages the dependencies between JavaScript files and in modular programming. | Type: scriptSrc Regex: require.{0,250}\.js |
Security | ||
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
Web frameworks | ||
Microsoft ASP.NET | ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages. | Type: html Regex: <input[^>]{1,250}name="__VIEWSTATE |
CDN | ||
Amazon S3 | Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface. | Type: headers Name: server Regex: s3[^ ]{0,250}amazonaws\.com |
Tag managers | ||
Tealium | Tealium provides a sales enterprise tag management system and marketing software. | Type: scriptSrc Regex: ^(?:https?:)?\/\/tags\.tiqcdn\.com\/ |
PaaS | ||
Amazon Web Services | Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality. | Dependent on Amazon S3 |
Reverse proxies | ||
F5's BIG-IP is a family of products covering software and hardware designed around application availability, access control, and security solutions. | Type: headers Name: server Regex: ^big-?ip$ | |
UI frameworks | ||
ZURB Foundation | Zurb Foundation is used to prototype in the browser. Allows rapid creation of websites or applications while leveraging mobile and responsive technology. The front end framework is the collection of HTML, CSS, and Javascript containing design patterns. | Type: html Regex: <div [^>]{0,250}class="[^"]{0,250}(?:small|medium|large)-\d{1,2} columns |
Cookie compliance | ||
OneTrust | OneTrust is a cloud-based data privacy management compliance platform. | Type: scriptSrc Regex: cdn\.cookielaw\.org |
Customer data platform | ||
Tealium | Tealium provides a sales enterprise tag management system and marketing software. | Type: scriptSrc Regex: ^(?:https?:)?\/\/tags\.tiqcdn\.com\/ |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 1 msGood
- requestTime
- 98 msGood
- dom
- 321 msGood
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
CNAME | olui2.fs.ml.com | olui2.gwimglb.ml.com. | no |
A | olui2.gwimglb.ml.com | 171.161.124.88 | no |
CNAME | olui2.fs.ml.com | olui2.gwimglb.ml.com. | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
olui2.fs.ml.com Entrust Certification Authority - L1M | 3/21/2024 | 4/21/2025 | 1 year 1 month |
styles-olui2.fs.ml.bac-assets.com Entrust Certification Authority - L1M | 3/21/2024 | 4/21/2025 | 1 year 1 month |
tags.tiqcdn.com Amazon RSA 2048 M02 | 3/19/2024 | 4/17/2025 | 1 year 29 days |
*.demdex.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 9/26/2023 | 10/26/2024 | 1 year 1 month 1 day |
target.bankofamerica.com Entrust Certification Authority - L1M | 3/21/2024 | 4/21/2025 | 1 year 1 month |
etui.fs.ml.com Entrust Certification Authority - L1M | 4/9/2024 | 5/9/2025 | 1 year 29 days |
cookielaw.org Cloudflare Inc ECC CA-3 | 3/1/2024 | 12/31/2024 | 10 months 5 days |
onetrust.com Cloudflare Inc ECC CA-3 | 11/13/2023 | 11/12/2024 | 1 year |
secure.bankofamerica.com Entrust Certification Authority - L1M | 3/28/2024 | 4/28/2025 | 1 year 1 month |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
Cache-Control | no-store |
Connection | Keep-Alive |
Content-Length | 509 |
Content-Security-Policy | default-src 'self' *.ml.com *.bac-assets.com *.bankofamerica.com gwm-set1.ml.wallst.com gwm-set2.ml.wallst.com 1359940.fls.doubleclick.net adservice.google.com advtools.morningstar.com akamai.tiqcdn.com api.amplitude.com api.markitdigital.com us-api.morningstar.com mwc-cdn.morningstar.com awrd.morningstar.com awsws.morningstar.com bam.nr-data.net beta.glancecdn.net cct.google cdn.mplxtms.com cdn.myglance.net cdn.tt.omtrdc.net brightcove04pmdo-a.akamaihd.net cf-images.us-east-1.prod.boltdns.net classroom.morningstar.com convertro.com d.agkn.com data.cmcore.com data.coremetrics.com dpm.demdex.net cdn.amplitude.com edge.api.brightcove.com fsa.merrilledge.com google-analytics.com hlsak-a.akamaihd.net cj.dotomi.com http://flagscape.bankofamerica.com fonts.gstatic.com bcsecure01-a.akamaihd.net awrduat.morningstar.com gwm-ml.wsodqa.com awsstgmain.morningstar.com awswsstg.morningstar.com http://research1.ml.com idsync.rlcdn.com insight.adsrvr.org cdn.polyfill.io iocdn.coremetrics.com libs.coremetrics.com hosttest.visualcalc.com login-prod.morningstar.com www.us-uat-api.morningstar.com login-uat.morningstar.com www.us-api.morningstar.com classroom-uat.morningstar.com manifest.prod.boltdns.net mc.coremetrics.com mcdata.coremetrics.com metrics.brightcove.com mktgcdn.coremetrics.com players.brightcove.net cdnapisec.kaltura.com public.cobrowse.oraclecloud.com recs.coremetrics.com resources.digital-cloud.medallia.com s3.amazonaws.com secure.brightcove.com secure-cdn.mplxtms.com stage.convertro.com tags.tiqcdn.com target.mboxedge35.com test.coremetrics.com testdata.coremetrics.com tmscdn.coremetrics.com udc-neb.kampyle.com webapi-bofatts-us.nods.nuance.com static-cert.getbills.com www.emjcd.com www.glancecdn.net qa-api.markitdigital.com www.googleadservices.com www.google-analytics.com www.googletagmanager.com www.gstatic.com www.gwm.ml.wallst.com www.gwm1.ml.wallst.com www.gwm2.ml.wallst.com www.gwm-set1.ml.wallst.com www.gwm-set2.ml.wallst.com www.international.ml.com www.merrilledge.com www.sepsemails.com cdn.cookielaw.org js-agent.newrelic.com geolocation.onetrust.com webapi-bofatts-us.nods.nuance.com six.cdn-net.com data: blob: wss: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' *.ml.com *.bac-assets.com *.bankofamerica.com bam.nr-data.net cdn.amplitude.com cdn.cookielaw.org code.jquery.com gwm-ml.wsodqa.com d.agkn.com data.flurry.com js-agent.newrelic.com maxcdn.bootstrapcdn.com myfinancialpicturestagepfm.ml.com nebula-cdn.kampyle.com players.brightcove.net cdnapisec.kaltura.com resources.digital-cloud.medallia.com six.cdn-net.com testdata.coremetrics.com tags.tiqcdn.com udc-neb.kampyle.com use.fontawesome.com vjs.zencdn.net www.gwm.ml.wallst.com www.gwm1.ml.wallst.com www.gwm2.ml.wallst.com www.gwm-set1.ml.wallst.com www.gwm-set2.ml.wallst.com js-agent.newrelic.com webapi-bofatts-us.nods.nuance.com webapi-us-preprod2.nods.nuance.com blob: wss: 'unsafe-inline' 'unsafe-eval'; style-src 'self' *.ml.com *.bac-assets.com *.bankofamerica.com awrd.morningstar.com awrduat.morningstar.com cj.dotomi.com d.agkn.com dpm.demdex.net fonts.googleapis.com gwm-ml-a2.wsodqa.com gwm-ml.wsodqa.com hosttest.visualcalc.com maxcdn.bootstrapcdn.com nebula-cdn.kampyle.com resources.digital-cloud.medallia.com udc-neb.kampyle.com www.emjcd.com www.googletagmanager.com www.gwm.ml.wallst.com www.gwm1.ml.wallst.com www.gwm2.ml.wallst.com www.gwm-set1.ml.wallst.com www.gwm-set2.ml.wallst.com www.merrilledge.com www.streamer.ml.wallst.com 'unsafe-inline' 'unsafe-eval'; frame-ancestors 'self' *.ml.com *.bac-assets.com *.bankofamerica.com *.managerewardsonline.com awrduat.morningstar.com awrd.morningstar.com classroom-uat.morningstar.com awsstgmain.morningstar.com awsws.morningstar.com awswsstg.morningstar.com www.merrilledge.com; worker-src 'self' blob:; |
Content-Type | text/html; charset=iso-8859-1 |
Date | Tue, 11 Jun 2024 18:46:47 GMT |
Keep-Alive | timeout=30, max=86 |
Location | https://olui2.fs.ml.com/login/login.aspx?TYPE=33554433&REALMOID=06-1d453033-6fa8-4647-8842-41ab72c4d847&GUID=&SMAUTHREASON=0&METHOD=GET&SMAGENTNAME=$SM$QZw7BGAC3Tdq21VR6CSeI4meOq6u8cYzrFElDP7Qg%2fv%2f1U%2bpCmPZuzS2uot1uHee&TARGET=$SM$HTTPS%3a%2f%2folui2%2efs%2eml%2ecom%2fSMCUI%2fsmc%2easpx%3fmsgid%3d |
Origin-Agent-Cluster | ?0 |
Strict-Transport-Security | max-age=31536000;includeSubDomains |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
adobeVisitorID | {"adobeMID":{"d_mid":"02016118421853926943040836256015153164","id_sync_ttl":604800,"d_blob":"6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y","dcs_region":6,"d_ottl":7200,"subdomain":"bofa","tid":"HUuY7sGJSjE="}} | olui2.fs.ml.com/login | 12/31/1969, 11:59:59 PM | yes | no |
gwmMMDppzpidExt | gwmmmdppzextva1 | .fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | no |
Bear | rJnw04r0sxjlPRvKIoYHCTZ2RRoEcwa5vWiUef89nak= | .fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
demdex | 01987147839438380273044018399710987121 | .demdex.net/ | 12/8/2024, 6:46:49 PM | yes | no |
check | true | .ml.com/ | 12/31/1969, 11:59:59 PM | no | no |
bankofamerica!mboxSession | [bankofamerica!mboxSession redacted] | .target.bankofamerica.com/ | 6/11/2024, 7:17:49 PM | yes | yes |
bankofamerica!mboxPC | 11654942ba6045d3b0c031797b356007.37_0 | .target.bankofamerica.com/ | 7/16/2025, 6:46:49 PM | yes | yes |
mbox | session#11654942ba6045d3b0c031797b356007#1718133471|PC#11654942ba6045d3b0c031797b356007.37_0#1781376411 | .ml.com/ | 7/16/2025, 6:46:50 PM | no | no |
pxv | e8860cbd-665e-45d1-8f8d-a339bce5b228 | .ml.com/ | 7/16/2025, 6:46:51 PM | yes | yes |
pxss | bef161d9-2456-4ef0-af42-1dd4a1a1f45b | .ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
pxsq | 1 | .ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
TS01d8cd03 | 0138c600082c76c1c71729da3b19c985a599a76ff48ed1a5a5b2d4eff48adec615dd03945b81818c8854ff04bd12a934d957e9f4b6 | etui.fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
TS01b34b54 | 0138c600082c76c1c71729da3b19c985a599a76ff48ed1a5a5b2d4eff48adec615dd03945b81818c8854ff04bd12a934d957e9f4b6 | .ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
WOPID | Q1S2 | olui2.fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | no |
bactm_lts | %7B%22adobeMID%22%3A%7B%22d_mid%22%3A%2202016118421853926943040836256015153164%22%2C%22id_sync_ttl%22%3A604800%2C%22d_blob%22%3A%226G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%22%2C%22dcs_region%22%3A6%2C%22d_ottl%22%3A7200%2C%22subdomain%22%3A%22bofa%22%2C%22tid%22%3A%22HUuY7sGJSjE%3D%22%7D%7D | .fs.ml.com/ | 6/11/2025, 6:46:51 PM | yes | no |
bactm | %7B%22adobeMID%22%3A%7B%22adobeImgSync%22%3Atrue%7D%7D | .fs.ml.com/ | 12/31/1969, 11:59:59 PM | no | no |
utag_main | v_id:0190089fd71b003276c7da3ae3f405000012e0000001a$_sn:1$_se:1$_ss:1$_st:1718133411423$ses_id:1718131611423%3Bexp-session$_pn:1%3Bexp-session | .ml.com/ | 6/11/2025, 6:46:51 PM | no | no |
AppBrand | ML | .fs.ml.com/ | 12/31/1969, 11:59:59 PM | no | no |
JS_WOGW | 0000GOHXhsyCLucCENM-HoMKOap:1hd8kgmor | olui2.fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
JS_VIPAA | 0000mgEl04Tj1WeongCuvUhb520:1hd8kcfbq | olui2.fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
GSID | a3m3CoEW1xUMlOirFjiBuRvEiuVAn45eaFnvWZOV | .fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
WOGWVIPAAVA1PC2 | 257915422.40585.0000 | olui2.fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
TS0151340d | 0138c60008d82d4178c1c6eb1b41e334a1ab94e18ff236fc5f56673909102b7350fad3c687ae20a2f08bdd24d3ae8914ec031af4b9 | olui2.fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
TS01422b66 | 0138c60008d82d4178c1c6eb1b41e334a1ab94e18ff236fc5f56673909102b7350fad3c687ae20a2f08bdd24d3ae8914ec031af4b9 | .fs.ml.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
SPID | Q1S2 | .bankofamerica.com/ | 12/31/1969, 11:59:59 PM | yes | no |
SID | 002A87E3C20066689B9E | .bankofamerica.com/ | 12/31/1969, 11:59:59 PM | yes | no |
_cc | ODRiN2NjNWQtNjRjZC00MjRi | olui2.fs.ml.com/ | 6/11/2025, 6:46:54 PM | no | no |