*** Log Reset ***
RedirectTo: http://local.ptron/sidki_h_2009-02-13/proxjs-x-menu.js
GET 61 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.
GET 61 : Substituted Command: https..
RedirectTo: https://mfasa.chase.com/auth/fcc/login
GET 61 : Final Redirect: http://https..mfasa.chase.com/auth/fcc/login
GET 61 : Pragma no-cache stripped
GET 61 : Referer: URL Command stripped: https-px-.

+++GET 61+++
POST /auth/fcc/login HTTP/1.1
Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, image/pjpeg, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/vnd.ms-excel, application/msword, */*
Referer: https://chaseonline.chase.com/Logon.aspx?fromLoc=ALL&LOB=COLLogon
Accept-Language: en-us
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Host: mfasa.chase.com
Content-Length: 2917
Cookie: ASP.NET_SessionId=d21ef13d-4849-4921-bab5-3ec978182c16; VoyagerSession=
Connection: keep-alive
Posting 2917 bytes...
RESP 61 : Cache-Control replaced: no-cache="set-cookie, set-cookie2"
RESP 61 : Expires killed: Thu, 01 Dec 1994 16:00:00 GMT
RESP 61 : Set-Cookie Expires filtered: adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; Expires=Wed, 28 Apr 2077 18:54:57 GMT; Path=/; Domain=.chase.com
RESP 61 : Set-Cookie stripped: Secure
RESP 61 : Set-Cookie stripped: Secure

+++SSL:RESP 61+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
HTTP/1.1 302 Found
Date: Fri, 10 Apr 2009 15:40:51 GMT
Server: IBM_HTTP_Server
Location: http://https-px-.mfasa.chase.com/auth/auth-stoken-osl.html?auth_redirecturl=https%3A%2F%2Fchaseonline.chase.com%2FSecure%2FOSL.aspx%3Fnewstoken%3Dfalse%26LOB%3DCOLLogon%26Referer%3Dhttps%253A%252F%252Fchaseonline.chase.com%252FLogon.aspx%253FfromLoc%253DALL%2526LOB%253DCOLLogon%26resId%3Dsuccess%26&
Set-Cookie: SMSESSION=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; Path=/; Domain=.chase.com
Set-Cookie: adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; Path=/; Domain=.chase.com
Set-Cookie: auth-user-info=hidden1|hidden2|hidden3; Path=/; Domain=.chase.com
Content-Length: 0
Content-Type: text/plain
Content-Language: en
+++CLOSE 61+++
GET 62 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.
GET 62 : Substituted Command: https..
RedirectTo: https://mfasa.chase.com/auth/auth-stoken-osl.html?auth_redirecturl=https%3A%2F%2Fchaseonline.chase.com%2FSecure%2FOSL.aspx%3Fnewstoken%3Dfalse%26LOB%3DCOLLogon%26Referer%3Dhttps%253A%252F%252Fchaseonline.chase.com%252FLogon.aspx%253FfromLoc%25526LOB%253DCOLLogon%26resId%3Dsuccess%26&
GET 62 : Final Redirect: http://https..mfasa.chase.com/auth/auth-stoken-osl.html?auth_redirecturl=https%3A%2F%2Fchaseonline.chase.com%2FSecure%2FOSL.aspx%3Fnewstoken%3Dfalse%26LOB%3DCOLLogon%26Referer%3Dhttps%253A%252F%252Fchaseonline.chase.com%252FLogon.aspx%253FfromLoc%253DALL%2526LOB%253DCOLLogon%26resId%3Dsuccess%26&
GET 62 : Pragma no-cache stripped
GET 62 : Referer: URL Command stripped: https-px-.

+++GET 62+++
GET /auth/auth-stoken-osl.html?auth_redirecturl=https%3A%2F%2Fchaseonline.chase.com%2FSecure%2FOSL.aspx%3Fnewstoken%3Dfalse%26LOB%3DCOLLogon%26Referer%3Dhttps%253A%252F%252Fchaseonline.chase.com%252FLogon.aspx%253FfromLoc%253DALL%2526LOB%253DCOLLogon%26resId%3Dsuccess%26& HTTP/1.1
Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, image/pjpeg, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/vnd.ms-excel, application/msword, */*
Referer: https://chaseonline.chase.com/Logon.aspx?fromLoc=ALL&LOB=COLLogon
Accept-Language: en-us
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Host: mfasa.chase.com
Cookie: ASP.NET_SessionId=d21ef13d-4849-4921-bab5-3ec978182c16; VoyagerSession=; SMSESSION=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; adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; auth-user-info=hidden1|hidden2|hidden3
Connection: keep-alive

+++SSL:RESP 62+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
HTTP/1.1 200 OK
Date: Fri, 10 Apr 2009 15:40:51 GMT
Server: IBM_HTTP_Server
Last-Modified: Mon, 16 Mar 2009 16:43:14 GMT
ETag: "4b3-258a2c80"
Content-Length: 1203
Content-Type: text/html
Cache-Control: max-age=1
+++CLOSE 62+++
RedirectTo: http://local.ptron/sidki_h_2009-02-13/CSS/dummy.css?join=all,b-ie
GET 64 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.
GET 64 : Pragma no-cache stripped

+++GET 64+++
CONNECT / HTTP/1.0
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Proxy-Connection: Keep-Alive
Content-Length: 0
Host: chaseonline.chase.com
Referer: http://slashdot.org/search/referrer-karma.php?q=Big+Bang
+++CLOSE 64+++
GET 65 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.
GET 65 : Pragma no-cache stripped

+++GET 65+++
CONNECT / HTTP/1.0
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Proxy-Connection: Keep-Alive
Content-Length: 0
Host: chaseonline.chase.com
Referer: http://slashdot.org/search/referrer-karma.php?q=Big+Bang
GET 65 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.

+++SSL:GET 65+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
GET /Secure/OSL.aspx?newstoken=false&LOB=COLLogon&Referer=https%3A%2F%2Fchaseonline.chase.com%2FLogon.aspx%3FfromLoc%3DALL%26LOB%3DCOLLogon&resId=success& HTTP/1.1
Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, image/pjpeg, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/vnd.ms-excel, application/msword, */*
Accept-Encoding: gzip, deflate
Cookie: ASP.NET_SessionId=d21ef13d-4849-4921-bab5-3ec978182c16; VoyagerSession=; SMSESSION=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; adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; auth-user-info=hidden1|hidden2|hidden3
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Host: chaseonline.chase.com
Accept-Language: en-us
Connection: keep-alive
RESP 65 : Cache-Control replaced: no-cache
RESP 65 : Expires killed: -1
RESP 65 : Pragma no-cache stripped

+++SSL:RESP 65+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
HTTP/1.1 200 OK
Date: Fri, 10 Apr 2009 15:40:56 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
set-cookie: SMSESSION=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; path=/; domain=.chase.com; secure
X-AspNet-Version: 2.0.50727
Transfer-Encoding: chunked
Set-Cookie: VoyagerSession=13149c85ac5da427b56404771d29a3a7; domain=.chase.com; path=/
Cache-Control: max-age=1
Content-Type: text/html; charset=utf-8
+++CLOSE 65+++
RedirectTo: http://local.ptron/sidki_h_2009-02-13/CSS/dummy.css?join=all,b-ie
GET 67 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.

+++SSL:GET 67+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
GET /images/bolprogress.gif HTTP/1.1
Accept: */*
Referer: https://chaseonline.chase.com/Secure/OSL.aspx?newstoken=false&LOB=COLLogon&Referer=https%3A%2F%2Fchaseonline.chase.com%2FLogon.aspx%3FfromLoc%3DALL%26LOB%3DCOLLogon&resId=success&
Accept-Language: en-us
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Host: chaseonline.chase.com
Cookie: ASP.NET_SessionId=d21ef13d-4849-4921-bab5-3ec978182c16; SMSESSION=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; adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; auth-user-info=hidden1|hidden2|hidden3
Connection: keep-alive
GET 68 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.
GET 68 : Substituted Command: https..
RedirectTo: https://chaseonline.chase.com/MyAccounts.aspx
GET 68 : Final Redirect: http://https..chaseonline.chase.com/MyAccounts.aspx

+++GET 68+++
GET /MyAccounts.aspx HTTP/1.1
Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, image/pjpeg, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/vnd.ms-excel, application/msword, */*
Accept-Language: en-us
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Host: chaseonline.chase.com
Cookie: ASP.NET_SessionId=d21ef13d-4849-4921-bab5-3ec978182c16; adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; auth-user-info=hidden1|hidden2|hidden3; GW=I|PR|PER|CCI|MARATHON|COL; _rememberme=; _tmprememberme=0
Connection: keep-alive
+++CLOSE 67+++
RESP 68 : Expires killed: Thu, 01 Dec 1994 16:00:00 GMT

+++SSL:RESP 68+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
HTTP/1.1 302 Object Moved
Location: http://https-px-.chaseonline.chase.com/logon.aspx?TYPE=33554433&REALMOID=06-000dee48-0b18-1285-ba53-80b7eafefd70&GUID=&SMAUTHREASON=0&METHOD=GET&SMAGENTNAME=-SM-RRV%2bko%2fDXScy1n1rZcPbTcjvMmf3VIxwvkVpujf8q3yD6DcgXybnI0ER6fSHVTdc&TARGET=-SM-https%3a%2f%2fchaseonline%2echase%2ecom%2fMyAccounts%2easpx
Content-Length: 0
+++CLOSE 68+++
GET 69 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.
GET 69 : Substituted Command: https..
RedirectTo: https://chaseonline.chase.com/logon.aspx?TYPE=33554433&REALMOID=06-000dee48-0b18-1285-ba53-80b7eafefd70&GUID=&SMAUTHREASON=0&METHOD=GET&SMAGENTNAME=-SM-RRV%2bko%2fDXScy1n1rZcPbTcjvMmf3VIxwvkVpujf8q3yD6DcgXybnI0ER6fSHVTdc&TARGET=-SM-https%3a%2feonline%2echase%2ecom%2fMyAccounts%2easpx
GET 69 : Final Redirect: http://https..chaseonline.chase.com/logon.aspx?TYPE=33554433&REALMOID=06-000dee48-0b18-1285-ba53-80b7eafefd70&GUID=&SMAUTHREASON=0&METHOD=GET&SMAGENTNAME=-SM-RRV%2bko%2fDXScy1n1rZcPbTcjvMmf3VIxwvkVpujf8q3yD6DcgXybnI0ER6fSHVTdc&TARGET=-SM-https%3a%2f%2fchaseonline%2echase%2ecom%2fMyAccounts%2easpx

+++GET 69+++
GET /logon.aspx?TYPE=33554433&REALMOID=06-000dee48-0b18-1285-ba53-80b7eafefd70&GUID=&SMAUTHREASON=0&METHOD=GET&SMAGENTNAME=-SM-RRV%2bko%2fDXScy1n1rZcPbTcjvMmf3VIxwvkVpujf8q3yD6DcgXybnI0ER6fSHVTdc&TARGET=-SM-https%3a%2f%2fchaseonline%2echase%2ecom%2fMyAccounts%2easpx HTTP/1.1
Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, image/pjpeg, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/vnd.ms-excel, application/msword, */*
Accept-Language: en-us
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Host: chaseonline.chase.com
Cookie: ASP.NET_SessionId=d21ef13d-4849-4921-bab5-3ec978182c16; adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; auth-user-info=hidden1|hidden2|hidden3; GW=I|PR|PER|CCI|MARATHON|COL; _rememberme=; _tmprememberme=0
Connection: keep-alive
RESP 69 : Cache-Control replaced: private

+++SSL:RESP 69+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
HTTP/1.1 302 Found
Date: Fri, 10 Apr 2009 15:40:57 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Location: http://https-px-.chaseonline.chase.com/Logon.aspx
Content-Type: text/html; charset=utf-8
Content-Length: 157
+++CLOSE 69+++
GET 70 : User Keywords: .so.a_tpi.a_code.a_jslink.i_script:0.i_spoof:0. : User Flag: .cookie_b:0.cookie_s:1.
GET 70 : Substituted Command: https..
RedirectTo: https://chaseonline.chase.com/Logon.aspx
GET 70 : Final Redirect: http://https..chaseonline.chase.com/Logon.aspx

+++GET 70+++
GET /Logon.aspx HTTP/1.1
Accept: application/x-shockwave-flash, image/gif, image/jpeg, image/pjpeg, image/pjpeg, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, application/vnd.ms-excel, application/msword, */*
Accept-Language: en-us
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Host: chaseonline.chase.com
Cookie: ASP.NET_SessionId=d21ef13d-4849-4921-bab5-3ec978182c16; adtoken=DW3FM9F8SI3QNATVCR9DE7J2QYGFYELQUEZXE5PCRRAKT0G8C4WXG7D3UKVLN0ZN; auth-user-info=hidden1|hidden2|hidden3; GW=I|PR|PER|CCI|MARATHON|COL; _rememberme=; _tmprememberme=0
Connection: keep-alive
RESP 70 : Cache-Control replaced: no-cache
RESP 70 : Expires killed: -1
RESP 70 : Pragma no-cache stripped

+++SSL:RESP 70+++
SSL cipher TLSv1 RC4-MD5 (128 bits)
HTTP/1.1 200 OK
Date: Fri, 10 Apr 2009 15:40:57 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: VoyagerSession=; domain=.chase.com; path=/
Cache-Control: max-age=1
Content-Type: text/html; charset=utf-8
Content-Length: 18746
+++CLOSE 70+++