r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb20c18681040b740ab1730562beb45c
abedefb801b0e13987d6619a77e0368771f9dfcb
288c1832db391da57e3d74ffa893ec2c47ef9c1945f85b88473c563b55a3dfb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "288C1832DB391DA57E3D74FFA893EC2C47EF9C1945F85B88473C563B55A3DFB3"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6168
Expires: Mon, 26 Dec 2022 20:52:37 GMT
Date: Mon, 26 Dec 2022 19:09:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9cce060ddc316540d079e6816a1e7412
709a74969d1996d2b35ef0f7f34ae18455169f1e
6d58b895476c9ab451d8fc51df98809adca445bc6e9d720430e80a0c85242879
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D58B895476C9AB451D8FC51DF98809ADCA445BC6E9D720430E80A0C85242879"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3124
Expires: Mon, 26 Dec 2022 20:01:53 GMT
Date: Mon, 26 Dec 2022 19:09:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b2d59bdbb1ca6324590988ec031cf1fc
bfd4e25af37dcde4bac38d9b178c5ac8e50f8834
cef2180120ef42ff09d54577229c058d41d2c569d485f5a6dcfadc74bf8aa647
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEF2180120EF42FF09D54577229C058D41D2C569D485F5A6DCFADC74BF8AA647"
Last-Modified: Mon, 26 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2889
Expires: Mon, 26 Dec 2022 19:57:58 GMT
Date: Mon, 26 Dec 2022 19:09:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 26 Dec 2022 18:35:02 GMT
content-type: application/json
age: 2087
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bGR2vaUN2Ml0qYabBPNOiwHIhmpQsZuS36/L82J+TfiR1jVxRghx6jj3AgeMTUQKMPnN9t5uRlg=
x-amz-request-id: XPBV6CDJHPK1CY7G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Dec 2022 18:55:26 GMT
age: 863
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
btconnect-109798.square.site/
199.34.228.40302 Found 390 B URL HTTP/1.1 btconnect-109798.square.site/
IP 199.34.228.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dcb73e62e7a4ca81c9e1456d6d52e416
7749c432b749a879858608520406879d486b4b6e
f40301d8285445c9d9597d0b196c3d7926cfd005d02a021a0c23f086b017fe74
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET / HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:49 GMT
Location: https://btconnect-109798.square.site
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ik5uMVNaeDVFVjBjdnJObTBVUTMzQ2c9PSIsInZhbHVlIjoiN2h3NVRaaXdvUmE2a3MrVkxCWUF0anl1MmNBOUU3dFZRd284WHl2Rm9ENlRGNHJKcEFnRjV1eUxETE1wUGdFaGptUVFQZ2pKcDBqSnF1NU92MlFtZlwvNnFQNFdIcjZISytscU1XMVM1N2hvUm8zR0dXemhLaENJTGtcL0RvU0lXMiIsIm1hYyI6ImY2ODgyN2FlNjA2ZTViZTZhZDgyMjhjMjZmZTIzNjNiNzZhNDNhYWY3YWNjYmNmMWJhYmVlNWFlNjA0MGM5MzEifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:49 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IlhcL1J3dEFzMzdaUFFEWEsycVdmMHJ3PT0iLCJ2YWx1ZSI6IjFVb1JycDNCZXk3NzlXYnI1VWxXcW0rdDJSK3FPZDh3YTFDNXVjbG9pSUhyRXdPT3FLYlgwT2l0UFMrZUs4bmRcLzMwRGdtMWhSY1p5T1A5cW95RG9qUGpDMlBPaHNUKzVSekVJbUxzU3k5Y0JJY1dJcUpHUENwK2g2TEdhT0twZCIsIm1hYyI6IjI2ZjcxNmQzMjA1MGY3N2RkYmEwZWVjYjc5ZjZjNTVjMjU1N2YxOTY0NDM4NWE3MzAzNGMxNjc3YmUwODllMDAifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:49 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6InFraElVcThJaytVOTA1aXhzcnRrRkE9PSIsInZhbHVlIjoiY2JkemFDUUVqeHdLdkpWZDFIbFVHUE4xUFdTWDdwc1hzcmxQQmh6Tm55RmdNcGY4SCtUVTd0bVdYVVVcL0xhYVZWM05vYlVuMG94aTIwbDBkcHk1KzB1aTJnRzNSMEFZMU5rK0VqUVB2QUdSVE1aWDZlV0ZWdHhEdGhRVlFRS1N2IiwibWFjIjoiNDhkMmU3YWVkYmRmYTlhZWJmNDE3YjFjNTRjNTFjNTIxN2Y5ZmM3OGZiNWFkOWEzMmMxNWRhMGNiODNmOTZjZSJ9; expires=Mon, 09-Jan-2023 19:09:49 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn122.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 47c1ec325e10c58927445da7922f8a5c
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Dec 2022 19:09:49 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 26 Dec 2022 18:33:30 GMT
age: 2180
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 104b12f08bcb6b129451c267d7f109fd
a5c4d5894c931e0437a83bfd8d8ef78c0b7cb8db
0ae58889f4bbb874a9d940d004f2c8b10a4f7dc8b9887429409a947065f14b33
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "0AE58889F4BBB874A9D940D004F2C8B10A4F7DC8B9887429409A947065F14B33"
Last-Modified: Mon, 26 Dec 2022 10:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3318
Expires: Mon, 26 Dec 2022 20:05:08 GMT
Date: Mon, 26 Dec 2022 19:09:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 68ee4e2891b5a52719997e4ef8cb7aab
ae2e49eff010551d7f3dcf005a51530ee2910480
2bae50a834a34f248f6a79cf6f191dcf709c24b884f2d3da7fa43985c6b2d48b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2792
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 19:09:50 GMT
Last-Modified: Mon, 26 Dec 2022 18:23:18 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
btconnect-109798.square.site/
199.34.228.39200 OK 9.2 kB URL HTTP/1.1 btconnect-109798.square.site/
IP 199.34.228.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (19231)
Hash dbc48661d83c05d7980ee37f6bbfd210
1d8bfc74aca462cc8bde3023b323decc816e7582
f8f7db3aa5b6eb5d785f479cd28b47d6ca4fe0e073bbf3bcead7d3118275ce48
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET / HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.1.1654494730.1654494728.31da809a-5d97-4f1c-b3dc-23df3825d286; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:50 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; expires=Mon, 09-Jan-2023 19:09:50 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; expires=Mon, 09-Jan-2023 19:09:50 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:50 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu85.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 9a3c270f5c2e118fe958c13f41080932
Content-Encoding: gzip
push.services.mozilla.com/
34.215.91.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.91.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4U+PPQJC9l0JVRNN7EznVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XT6AZY1ORm7r7L8VOoySMxGDeBs=
cdn3.editmysite.com/app/website/css/site.0603219adb0dabdea940.css
151.101.129.46200 OK 24 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/site.0603219adb0dabdea940.css
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (64921), with no line terminators
Hash a1dc42be74cae5a6edc98bda98625402
9d3a21200c5d8c50f523178c175fa96529467328
afa1e6acc69a549bcf6037339eb5cc359fcda390a0f785dbc45bfc3ba138e40d
GET /app/website/css/site.0603219adb0dabdea940.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"0eeb710a07b97b08b45a3e578b4a5e19"
x-amz-request-id: tx00000000000004e71d2a5-0063a4c1fb-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 5baa6c7dfac8777e91a6d7bc6839ccac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 339670
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.806119,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24143
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.65.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.65.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 19:54:04 GMT
etag: "639cccdc-124fe"
expires: Thu, 05 Jan 2023 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu75.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
age: 383469
x-served-by: cache-sjc10061-SJC, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 2786
x-timer: S1672081791.805300,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25752
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.5ca94e9b102221723df8.css
151.101.129.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.5ca94e9b102221723df8.css
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (64204), with no line terminators
Hash de8a9c4d7a81406cdd1cef8a79d8e9e8
f379b6dbde2747acb65639e5c2a4dac7d42b2e7d
043297a5ff41138959b3246916a39939a51eb6918c4317a6447ad0f77de926d1
GET /app/checkout/assets/checkout/css/wcko.5ca94e9b102221723df8.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 12 Dec 2022 20:30:57 GMT
x-rgw-object-type: Normal
etag: W/"66ce001adf4a188f3c097ccbca133e82"
x-amz-request-id: tx000000000000047392c62-0063979012-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 1204454
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.806342,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23328
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
151.101.129.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (11882), with no line terminators
Hash 20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 3606530
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.808385,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4998
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/runtime.3423f96bf3579c9f0c99.js
151.101.129.46200 OK 25 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/runtime.3423f96bf3579c9f0c99.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (51573)
Hash b4d17f2eddfccd5ab1bb8a1e7b24720e
f76736ff3853740ef1f6ccf8760a00e19491e728
7d27f5cb45833f85311bb7afd91f6124848a38da9bc0936cfc189ec7be075a49
GET /app/website/js/runtime.3423f96bf3579c9f0c99.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"60a949514b3c0307f13b27391bb6b56f"
x-amz-request-id: tx00000000000004e95cfd1-0063a4c1fa-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.3423f96bf3579c9f0c99.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 5a2dcd05ba26e1147eb67797371cd045
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 339670
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.809165,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25305
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.21.226:0
Hash ea13947a937ac14fbc0fbe04ef312df3
01613d599f3fea8a9e7162d31a268219a3e5b5a2
191947511c2e115639c8070780e33d82da790c8ba4387959b09f51fc64658955
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:50 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F3BCA8C7C7070982FB418B40C0AFC8A8423F64D1"
Expires: Tue, 27 Dec 2022 05:00:00 GMT
Last-Modified: Mon, 26 Dec 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3479
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77fc1cf8ff3a0b39-OSL
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.21.226:0
Hash ea13947a937ac14fbc0fbe04ef312df3
01613d599f3fea8a9e7162d31a268219a3e5b5a2
191947511c2e115639c8070780e33d82da790c8ba4387959b09f51fc64658955
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:50 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F3BCA8C7C7070982FB418B40C0AFC8A8423F64D1"
Expires: Tue, 27 Dec 2022 05:00:00 GMT
Last-Modified: Mon, 26 Dec 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3479
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77fc1cf9087b0b65-OSL
cdn3.editmysite.com/app/website/js/vue-modules.9bc3531c7b14b533b653.js
151.101.129.46200 OK 72 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/vue-modules.9bc3531c7b14b533b653.js
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (27432)
Hash f4b29141d74cfc31ae87b2379bf827c6
d3cecf2609cbc423e0a59e9cad96c96595fc550c
77ba93a6fbe46719dede0298898f4d896c073a42d0c093179615edf38f1fd0e5
GET /app/website/js/vue-modules.9bc3531c7b14b533b653.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:22 GMT
x-rgw-object-type: Normal
etag: W/"be42f69ec175a01b6e195526f58dae71"
x-amz-request-id: tx00000000000003b70ac6d-006384ffda-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.9bc3531c7b14b533b653.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: 40250d3662d1b25130b369a7dbbdc2eb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 1795115
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.811414,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 72192
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/languages/en.a54c52ad7eeddd58eae7.js
151.101.129.46200 OK 153 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/languages/en.a54c52ad7eeddd58eae7.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 153 kB (153417 bytes)
Hash 198bf21e2a17605ea05f70837be563cf
d5dfb49a31cec0b15e3707629c8a3fce887357af
d31d8b4e01f88825571ef83b04c73f8c4cc14446343fa693fc290b8bac714fc6
GET /app/website/js/languages/en.a54c52ad7eeddd58eae7.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Dec 2022 21:38:46 GMT
x-rgw-object-type: Normal
etag: W/"2ca8c36caecbe708a26417dd02d2aea0"
x-amz-request-id: tx00000000000004cc305e0-0063a0da4f-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.a54c52ad7eeddd58eae7.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3aa41add2fac27f522eefca85ba3c01708233cf6
x-request-id: 64d2d63e98dc8da494c91ea091228023
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 595693
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081791.812355,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 153417
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
108.157.217.47200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 108.157.217.47:0
Hash 856317103bde7a72d7b86fc7dd519fed
4aa41c665012f093ab02bbc5c50fcc21b9b12d2c
2040bce00cdd0112bc70ceeffe5e1c80b77726563c36b6e83a0c10b91afc29a7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Dec 2022 19:09:51 GMT
Etag: "63a88ba6-1d7"
Last-Modified: Mon, 26 Dec 2022 19:00:20 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: oDWCb1mKCgXop4FlRmJl_EQpIfuBikw5dzhQyXZ59TnHuRwwHFT85w==
Age: 571
ocsp.sca1b.amazontrust.com/
108.157.217.47200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 108.157.217.47:0
Hash 47d5697b0ad58722deaf2b9793f9199b
219cc2f0493c074e31d7888f6b573d900f2bf257
753d23c0d148384a0820b49676cf1d73459d80bc2e2efc60a38b8982eced7e1a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Dec 2022 19:09:51 GMT
Last-Modified: Mon, 26 Dec 2022 17:32:30 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 e15d64214925ae012e1d711871cc6452.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: 6VDi0LD-a4PmP8jM4agePkL6qvll4uDOLECwFf_ihSNoUhgbwJXwnQ==
Age: 5841
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.232.197.188200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.232.197.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:51 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa97f58bb-2d67-4ddc-978e-1bf0230a9e6f.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa97f58bb-2d67-4ddc-978e-1bf0230a9e6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9d7f2c9f926dd26c3a7046454c9cfb1
0906cee4a98ea4bd2ec1ded9ef9d782871f34f84
fbdd3fc928d8d0d0258d1c1fe018f79c856c9ee3ac2623f5d55f5b0e93db4d97
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa97f58bb-2d67-4ddc-978e-1bf0230a9e6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4148
x-amzn-requestid: 68370910-934b-46b9-9d6f-e5b8c5003c1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dq7HNEUrIAMFkHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a7722d-3b68668640ef15eb015a4230;Sampled=0
x-amzn-remapped-date: Sat, 24 Dec 2022 21:42:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qWaBSEfp4eUWJ1-g1JbzsN5a5mUpKLbG-Qmt7QI0XPawV99fnsamoQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:49:57 GMT
age: 76794
etag: "0906cee4a98ea4bd2ec1ded9ef9d782871f34f84"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e38d94b0be1b10ecac941b497f57c861
12911cd039f5c7b05013ebbc369aec5613134906
38a41df0d4f4405e8ecf6b379431bdb87eaed40e20481262b43d1fd127c010fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9452
x-amzn-requestid: 41b87e86-25f2-4d3b-a4ac-ae9a933a75b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duMupEMdIAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c190-22b2693c043757fb5d58dda7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: StP3cRZB5uQq5vj2oEZZmxAsLlu-nsnDNjQBdeb_o6Rd3YsP7p2Qlg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:06:41 GMT
etag: "12911cd039f5c7b05013ebbc369aec5613134906"
content-type: image/jpeg
age: 75790
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2665a6ae98ace2eab671f9e8a9f0978
d1b0b2b7bf8c8bf2e9765e9103908aba36989727
ae9125caee2dc267c67bf4f31f2669e03f65c47a43f2d0ab83081eb043d23d85
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9932
x-amzn-requestid: 280fdeaa-a0e1-4306-9adb-52c0f28b4002
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzGcjoAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-73e3e4b34b67da2d2dbb8020;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nR7WiQ1kUfI129AOECPfR181bNjexz6B7BEIYxDRiGNqfKCQPiBKOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:09 GMT
age: 76362
etag: "d1b0b2b7bf8c8bf2e9765e9103908aba36989727"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90be501d-93e5-40ba-98d6-b790fc50966b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90be501d-93e5-40ba-98d6-b790fc50966b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d780f4b4a5928afafeea1348a117ab7
f0623d0355e6b57a5b9bed048b93e1b6b102dfe9
ad6dd8216b30147c99abfff2d1672d731ff940b2fb1da015d3fd5b0b96d11d0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90be501d-93e5-40ba-98d6-b790fc50966b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10502
x-amzn-requestid: 52ecc48a-9ba2-45ce-b4d4-a05b6bd49214
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dlFHaFnfoAMF6wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a51bc8-527601d115cb2f6d76d14958;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 03:08:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5obtiiP91WkrOa9NATTuqVwUG64JoT_PbMfG7rmw6BdgGhilopoCGA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Dec 2022 03:14:54 GMT
age: 57297
etag: "f0623d0355e6b57a5b9bed048b93e1b6b102dfe9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4d56ed7f66802ac154bc856e5bb69c13
3fc1162af1229f939cc1253aa86d476da51950cd
e10eed5b4c912f9730169ac07f9ba6c471f1d27c8d0efdfed8bb4a6cb5880869
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6073
x-amzn-requestid: 69e21df1-a420-4ad7-b0bf-4d9eacb5bee3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duOGEGvmIAMFoag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c3c0-6b8069e3057cf71d7284fbf7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:42:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgxS2QNcD1b_3t2BTbbnUpDp8F9GM--NIw4cVzoKxXL3btqDf9h-9A==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:13 GMT
age: 76358
etag: "3fc1162af1229f939cc1253aa86d476da51950cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba61b2beeb64bfb5c38d0c7fd7c82a32
6bdbfc5daa929523a27de45683928e742431d537
573288644cb5ec3f13d0d19b84dd1dabe7cb834ba87704593af63dbd5b9d4f07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10094
x-amzn-requestid: 6937578a-43e6-4c68-a953-5f457b3f70e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNbuEXioAMFV8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2b1-09b3de421c367dbd09f8cf7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QMPD3U33gWb-LUXYnu6kfmGPFtst_gao0dNc1dvvsliZkTOyCO11tw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:06:44 GMT
age: 75787
etag: "6bdbfc5daa929523a27de45683928e742431d537"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.232.197.188200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.232.197.188:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1994
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:51 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 26 Dec 2023 19:09:51 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400
199.34.228.39200 OK 3.4 kB URL HTTP/1.1 btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400
IP 199.34.228.39:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a9463d86ebe0fc07b2c1d61117e6af2
ef0130f409c753d77b6f31878ae8537671aee48a
9288de1772ae84636ca3c486fe2a17fb809a57e52c045be5838500a00e207181
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/webp
Content-Length: 3350
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "pUVJox2pbF5IewxCJptLe0qIUOwSEzRRyBLBDBPyhlw"
Fastly-Io-Info: ifsz=4132 idim=224x225 ifmt=png ofsz=3350 odim=224x225 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000000000004f4d7f9c-0063a6a128-c696eea-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z458d
X-Storage-Object: 458d0a97c28699841111023901d9badf01a35ebd529bcd2c02871ae61e9a36f8
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-sjc10038-SJC, cache-pao17472-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1672081792.973677,VS0,VE27
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu148.sf2p.intern.weebly.net
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
35.188.42.15200 OK 2 B URL HTTP/1.1 sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP 35.188.42.15:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Content-Type: text/plain;charset=UTF-8
Origin: https://btconnect-109798.square.site
Content-Length: 429
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://btconnect-109798.square.site
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
x-envoy-upstream-service-time: 1
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
btconnect-109798.square.site/static/icons/payment-methods/visa.svg
199.34.228.39200 OK 2.2 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/visa.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Hash 98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx0000000000000343a09e6-00631274b0-c0351b0-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: bca12821cae50e4f65259cb3c7f3e813
btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg
199.34.228.39200 OK 1.7 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Hash 1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001af98c5-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 64e7a1f988e64c740c1313346cd2b2db
btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg
199.34.228.39200 OK 1.2 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Hash 2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001aa71ba-00628473fa-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: ccb14115dd49ab1d399da1e93b384a1d
btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg
199.34.228.39200 OK 3.1 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Hash 2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001a5c24d-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 64c01b8bc35171280e146d654ea214d8
btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates
199.34.228.39200 OK 70 B URL HTTP/1.1 btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0202fec5c18173b1ccef517d7a8fb076
ed3c42952ab998b5f8f4570735caccb08bbbfbba
a496539bedf56d084f7654fb244367daf638da6ab09f7812b81c743baa995e26
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /app/website/cms/api/v1/users/139428721/customers/coordinates HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:52 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9; expires=Mon, 09-Jan-2023 19:09:52 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6Im02XC9PalFtOXJTMzlhTUdnKzRRXC9hUT09IiwidmFsdWUiOiJud1BHXC9vNm9KSk9iamNXXC9pVlhEMG1ZUWdwUkpIK2p2c1RvYkVOQXRmV0t4eDJIUDFsZXJaaVFBM1pKTlZqMHhyWEhJMFFraldQRG9adDJ6YTdRZ0QyOEIwMXdMdnhCQncweHI0WXZQSkhFbUpaRHFONmg3Q1k5dkJEOXZqdkVVIiwibWFjIjoiYzVlZDM0NzE4ZTcyZDBjMDZhYWU1NTNhYjE4YzZkOGRiZWZiYjFiYTQzZDRhOGNmYWE0MzQ4ODg5OWM1ZWM4MyJ9; expires=Mon, 09-Jan-2023 19:09:52 GMT; Max-Age=1209600; path=/
X-Host: blu143.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: f9600b520c0fa45c74c401ce1a997227
Content-Encoding: gzip
btconnect-109798.square.site/static/icons/payment-methods/applepay.svg
199.34.228.39200 OK 3.0 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/applepay.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Hash c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001ae660e-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu143.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 7b90165fcdd447f4fad96522cd069666
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
199.34.228.39200 OK 201 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9
Content-Length: 83
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:52 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu108.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
199.34.228.39200 OK 894 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with very long lines (894), with no line terminators
Hash 425945c21c361516d57dcfa68f2adfa0
fd1e931b775c396cd3f02d5bc13600e305c5a93d
e49bdcc237529abb3baee5c2ea30e106e2a9b05b78fcbc4542a271e435d38db8
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9
Content-Length: 78
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:52 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu124.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 894
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
btconnect-109798.square.site/static/icons/payment-methods/discover.svg
199.34.228.39200 OK 3.1 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/discover.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Hash 9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001aa7132-00628473f9-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 3dfd986f27ca2c31e2ee8c7a7fdb605a
btconnect-109798.square.site/static/icons/payment-methods/jcb.svg
199.34.228.39200 OK 3.9 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/jcb.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Hash 32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001af9a36-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 52634c6f7e4dd82dce15f0b7758ad2bf
btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg
199.34.228.39200 OK 1.4 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Hash 4d9798d0983422b1931dbfb934e04144
b70cb2e3822c77177ba56a351e309d5394263105
880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/cashapp.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000d958643-00629614fd-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu143.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: de3ae4c7b24b6ad0e70f94899d6a7b4d
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 60be6ff09098891be58a5e8ad40cc19a
8e6260f14f2f356a2b0e1fec7373f7410b562123
2223239ac6d524167b89c16955aec3446fd5f9bb245ad7d3302d468e31e120f9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3224
Cache-Control: max-age=134428
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 19:09:52 GMT
Etag: "63a94f04-1d7"
Expires: Wed, 28 Dec 2022 08:30:20 GMT
Last-Modified: Mon, 26 Dec 2022 07:36:36 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
btconnect-109798.square.site/square.ico
199.34.228.39200 OK 6.5 kB URL HTTP/1.1 btconnect-109798.square.site/square.ico
IP 199.34.228.39:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6Im02XC9PalFtOXJTMzlhTUdnKzRRXC9hUT09IiwidmFsdWUiOiJud1BHXC9vNm9KSk9iamNXXC9pVlhEMG1ZUWdwUkpIK2p2c1RvYkVOQXRmV0t4eDJIUDFsZXJaaVFBM1pKTlZqMHhyWEhJMFFraldQRG9adDJ6YTdRZ0QyOEIwMXdMdnhCQncweHI0WXZQSkhFbUpaRHFONmg3Q1k5dkJEOXZqdkVVIiwibWFjIjoiYzVlZDM0NzE4ZTcyZDBjMDZhYWU1NTNhYjE4YzZkOGRiZWZiYjFiYTQzZDRhOGNmYWE0MzQ4ODg5OWM1ZWM4MyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:53 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a88764-00628473fc-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 959c8196cb8451896380455e476ea435
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css
151.101.129.46200 OK 184 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css
IP 151.101.129.46:0
Hash 45eb1d539e7e3713ba21d3b762495241
a3ab579ddcbf6844d185c3a2b7e21b90e03fc8f0
fd87e35b1c208ed7ec8a1ff7b7a992113993b930cbffb505211571bd61897221
GET /app/website/static/fonts/Open%20Sans/Open%20Sans.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: W/"5a911d826579cde6887d45195f330549"
x-amz-request-id: tx00000000000002e3ef29b-00636c8aa8-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 09db0b9815d1fe8dac449ecc2a7da2c932739637
x-request-id: e05a8f8ee86bf7cf4b887a95520bc088
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 4024025
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.207093,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 184
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css
151.101.129.46200 OK 146 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css
IP 151.101.129.46:0
Hash 63e426ca2fc1f525e07549acbdb03c86
de204bf76765003228040392b785be8a4635f71e
7cd7ad8d4405b131406a53408c0ed82f5d0f5b8b0e715f9cff32321ecb11b81f
GET /app/website/static/fonts/Domine/Domine.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: W/"f859875369df59480c1798e4b7f47bac"
x-amz-request-id: tx00000000000003e58b3a9-00638837b9-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 816ece5f6932666fedb5f058fa3c5c7398fbad59
x-request-id: 7a7735d66fd94aff22b111fd918b5a57
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2210248
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.205968,VS0,VE9
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/26162.fcc843ad2a6dbf5e659e.js
151.101.129.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/26162.fcc843ad2a6dbf5e659e.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (11061)
Hash 1f45b0eb59b38813087f3794c00be8e9
c1fcf0d6f1bd5cdee7e01d7276b8860fc98ddc7b
86e134c388bec637d1f40b8b42d2a6afb06b8ee1fc3a1712e06a3ec3d855f96f
GET /app/website/js/26162.fcc843ad2a6dbf5e659e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Dec 2022 17:43:45 GMT
x-rgw-object-type: Normal
etag: W/"3eb60eade85131c038655bbbb861a927"
x-amz-request-id: tx00000000000004c4696b9-0063a0a34d-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26162.fcc843ad2a6dbf5e659e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 61e5d5675664de05b2475456ac8af837f62daad6
x-request-id: 3fb321cb8cc1202c3e41519054185039
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 609709
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.223102,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6039
X-Firefox-Spdy: h2
btconnect-109798.square.site/site-icon?device=ios&size=180
199.34.228.39200 OK 1.3 kB URL HTTP/1.1 btconnect-109798.square.site/site-icon?device=ios&size=180
IP 199.34.228.39:0
File type PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Hash cf3a9fc9da142c7093ed2cd642a545db
630165f76a5e26e7bfb9db0326e8ac62ce69345e
14d2c0d565f8995ac59174d41f4b469e700dc21dfdb1b72cbca43a5c1bdf0503
GET /site-icon?device=ios&size=180 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6Im02XC9PalFtOXJTMzlhTUdnKzRRXC9hUT09IiwidmFsdWUiOiJud1BHXC9vNm9KSk9iamNXXC9pVlhEMG1ZUWdwUkpIK2p2c1RvYkVOQXRmV0t4eDJIUDFsZXJaaVFBM1pKTlZqMHhyWEhJMFFraldQRG9adDJ6YTdRZ0QyOEIwMXdMdnhCQncweHI0WXZQSkhFbUpaRHFONmg3Q1k5dkJEOXZqdkVVIiwibWFjIjoiYzVlZDM0NzE4ZTcyZDBjMDZhYWU1NTNhYjE4YzZkOGRiZWZiYjFiYTQzZDRhOGNmYWE0MzQ4ODg5OWM1ZWM4MyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:53 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:53 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; expires=Mon, 09-Jan-2023 19:09:53 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:53 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 0b955a9f22910313957d616233bdb2f1
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=896becc9-4900-4503-9d65-41e639f1e564&batch_time=1672081789209
3.233.155.139202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=896becc9-4900-4503-9d65-41e639f1e564&batch_time=1672081789209
IP 3.233.155.139:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a05d5f69567708246791bf596a3dcf29
4b819fe0f802ac97292dbf9643dec1f625c76458
0285d7e8fd09f00142e47ade343a14eb71e31576f4173bb18134e834780da2dd
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=896becc9-4900-4503-9d65-41e639f1e564&batch_time=1672081789209 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15974
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/40846.a57e3a8ee8e6235cd269.js
151.101.129.46200 OK 3.9 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/40846.a57e3a8ee8e6235cd269.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (10135)
Hash 4d5cf35f7af8bfb5855046d65613fdee
417edcc5f6806145e469e623640b80d78e4808e6
8ae35387968d088b0cc9c2c264f236a366b0d7cbf6134450acf18286048a4a4d
GET /app/website/js/40846.a57e3a8ee8e6235cd269.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:17 GMT
x-rgw-object-type: Normal
etag: W/"630e018251d928d196cae2e328d36580"
x-amz-request-id: tx000000000000020d04606-006356f890-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/40846.a57e3a8ee8e6235cd269.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 816ece5f6932666fedb5f058fa3c5c7398fbad59
x-request-id: e398ee3234afd0beaa5bbf3a1cedd7bc
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2227255
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.239307,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3900
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js
151.101.129.46200 OK 12 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (15468)
Hash fbd8628ccf6b593936cb1ef094a5b011
feb9623af2021175e7b031bc0f6f258f8e4e7ee2
0a59c6c168da08747c73c7e780f368887dca1339c929ac2566da3f7f6af4eb86
GET /app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:42 GMT
x-rgw-object-type: Normal
etag: W/"37111ca05ad9136805e13122b23d86ca"
x-amz-request-id: tx00000000000004becef7a-0063a1dc25-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.b5da6fb73e254aa8d983.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 593b57f53ed43b939699dc586b36921e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.244609,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12355
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/63481.2c08ab74c1e39b2c8681.js
151.101.129.46200 OK 6.5 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/63481.2c08ab74c1e39b2c8681.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (5953)
Hash 8b329e60fe56981f03e096a3b62b44bf
6b114f8c4358750d6a0b48b54fb048a6df3d6831
9226054b2ee67a847d7a79448cdffc598102f79c19a12f2a38a24ae1df443c52
GET /app/website/js/63481.2c08ab74c1e39b2c8681.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 15 Dec 2022 18:43:12 GMT
x-rgw-object-type: Normal
etag: W/"a1ce9b1d02fed3fb7daeebd5438fe249"
x-amz-request-id: tx000000000000049777a45-00639b6b61-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63481.2c08ab74c1e39b2c8681.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f28619c22d756f5ea4206bf323ec8cd75f02f502
x-request-id: cc19d3d4aa9a1572de59c882044f95fa
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 951708
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.244640,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6526
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/89814.34c178d44259563f7567.js
151.101.129.46200 OK 4.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/89814.34c178d44259563f7567.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (14754)
Hash f18feb282a86d3b9406341cf119cd92a
e8890c30eec0df9a5501e478cc0ae6f1cd97bcad
c4f45f34acc47f3fe4eb57fc37ce3bace6b027f9d55d83908473e289386b5acf
GET /app/website/js/89814.34c178d44259563f7567.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Dec 2022 19:39:13 GMT
x-rgw-object-type: Normal
etag: W/"60cbce4947954462906cf7eee4d79fdc"
x-amz-request-id: tx00000000000004a4e1f2b-00639cc9d1-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.34c178d44259563f7567.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6ce0983f7341d24103fdccd0a09bf8f09ae88c22
x-request-id: 2d9a293c7027719acc0e3fd58a6a79f8
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 862030
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.247950,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4639
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/46150.a2c0ee2f099a694f4b93.css
151.101.129.46200 OK 5.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/46150.a2c0ee2f099a694f4b93.css
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (21222), with no line terminators
Hash d87098273ea05d81f06a7851027171a1
d155cd8f3f8ec583a945a0607580a3f46d5180c3
8225b8622d53e375e74bd3e7e0f166b2ac5fedf60b196d96462769724ef3c697
GET /app/website/css/46150.a2c0ee2f099a694f4b93.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:38 GMT
x-rgw-object-type: Normal
etag: W/"b3cee5289aa6f23274baaed5fc19c1e8"
x-amz-request-id: tx00000000000004ce4d55c-0063a1dc24-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 09c6c0102a7ad43c8a906362620a576d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081793.249088,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5335
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/46150.06c1006bd234778ad196.js
151.101.129.46200 OK 5.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/46150.06c1006bd234778ad196.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (13481)
Hash 155945af572d70de29a537d7e1dc95b9
dafce42deb24307f3fd03ddc4c594f442be60f7e
fae84aea6f01258f8f4c245c044f0def1722e3f049f4472ad9854c0fb1dc7be8
GET /app/website/js/46150.06c1006bd234778ad196.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"b12872b2af2d4a38e26e7173a902b2a4"
x-amz-request-id: tx00000000000004d47ae77-0063a1dc23-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/46150.06c1006bd234778ad196.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a979950f571f20c31c693dc4002453f29734a10
x-request-id: f0702a76f9a7b792f0a195cbcbd8deca
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.249621,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5594
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/navigation-mobile.184cb4fc0af1666b5f0d.css
151.101.129.46200 OK 5.5 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/navigation-mobile.184cb4fc0af1666b5f0d.css
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (20582), with no line terminators
Hash 58dd30eb521c6d3841b3f89ace5fec5a
87a9a0c7ec41c8fe749e719058fded4694115750
aaee24f8ef3b33d679baae7a9612704b97a99001e7ed73a5123767e9eb11cbce
GET /app/website/css/navigation-mobile.184cb4fc0af1666b5f0d.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 16 Dec 2022 19:39:11 GMT
x-rgw-object-type: Normal
etag: W/"6b2f367fd8c2455d5c3e4d2e6214b3ae"
x-amz-request-id: tx00000000000004e8e1ede-0063a44656-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a4cbc36ef6c21ee707dd9bae049d5419429a328
x-request-id: 7e896c011d0a1088458f936f88426cdf
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 371498
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.244614,VS0,VE6
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5452
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/78084.8d43a7cab6170d6b418c.js
151.101.129.46200 OK 5.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/78084.8d43a7cab6170d6b418c.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (13895)
Hash 34a4576fc55fc710ff69cee4df862635
d2d4aeba9a7de33e131235d7baccc2563c36c699
fa518a7f4e3d79761186d885016ad94c787570eaa129f0eb53695fbc862ec9a3
GET /app/website/js/78084.8d43a7cab6170d6b418c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"fc09495134e054c9d27232bbafb29904"
x-amz-request-id: tx00000000000004becf05a-0063a1dc26-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/78084.8d43a7cab6170d6b418c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: a3785aa6a011929d96351a342e08cc36
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.250324,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5384
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/73781.4fcf0dae3a53d0b09f0c.js
151.101.129.46200 OK 18 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/73781.4fcf0dae3a53d0b09f0c.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (44746)
Hash 40ed07394bb153d22af57a87a092dcb0
e9db01623a996d3da347ba90c5fa8edf2d41cd43
ded6799ed1a5e2c5f9c5763c957a60eb56d3869e7d04960f17794ec9368907d9
GET /app/website/js/73781.4fcf0dae3a53d0b09f0c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"2722e8629ff97196c86c1e613d14c00d"
x-amz-request-id: tx00000000000004cf40662-0063a1dc24-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/73781.4fcf0dae3a53d0b09f0c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: fde058f27909efb2d30c7aca703ade3e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.251212,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 18256
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/78918.23fa48c78bc95517d94d.js
151.101.129.46200 OK 4.5 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/78918.23fa48c78bc95517d94d.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (7585)
Hash 16e40ae460f585ef271389187acfe94f
972067eadc19b02619d9fb1bec6a6d8f60c37b7f
1aaef55944f668600a8bdd23c6535f4a2f06dd31d0857c99c0220c042c38390f
GET /app/website/js/78918.23fa48c78bc95517d94d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"f5b176da6835b7692a686489583ab238"
x-amz-request-id: tx00000000000004d08890a-0063a1dc25-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/78918.23fa48c78bc95517d94d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a979950f571f20c31c693dc4002453f29734a10
x-request-id: 73b4f33e9aa3ab91f3dbbf120361a8c9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258048,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4506
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js
151.101.129.46200 OK 3.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (3720)
Hash b05305d9df1b56994e7045dacc0242b5
9d5bcc531c42ae3ddc8fcd23e23a301bdcfc89a5
69da22dbd327ec00f4292829294c53deb1750afda3b236aff4381a69d6999003
GET /app/website/js/11562.08b50449ae7a3f4b6257.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"b0eb0e08db2b8d54e1da1bfa5020e5a9"
x-amz-request-id: tx00000000000004e7e276b-0063a4c220-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/11562.08b50449ae7a3f4b6257.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 8a9efa69ec67ad6ba2cdae0385285e03
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 339669
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258152,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3359
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/cart-1.a6f313b0bd0f438f1886.css
151.101.129.46200 OK 7.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/cart-1.a6f313b0bd0f438f1886.css
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (26506), with no line terminators
Hash 492158a1598b739805035e99105f7eb0
0433ec0d5676daeba657355148f3b28e18936797
2a67911d6f9f13c76635767eb84029acda9b0f868d186d6f4f8912f022e31c5f
GET /app/website/css/cart-1.a6f313b0bd0f438f1886.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:38 GMT
x-rgw-object-type: Normal
etag: W/"9381903a66ae6cf605072ddb7bea83fa"
x-amz-request-id: tx00000000000004d47b7ac-0063a1dc2f-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: b9945cb06db85ed41b9246b3e6db7115
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258229,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7175
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/cart-1.fc9732e410856275e19c.js
151.101.129.46200 OK 35 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/cart-1.fc9732e410856275e19c.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (12954)
Hash 1630582ced72a10672374fd441f3377c
51a806d0751de7e4d171dd6d5cec6559f4740d5d
29a343e53aa8107f115077087d1f0c8c7115d43d1a18030f9c780a235dd9b3d4
GET /app/website/js/cart-1.fc9732e410856275e19c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:41 GMT
x-rgw-object-type: Normal
etag: W/"bc93951124909c6bc6dabd102a317a18"
x-amz-request-id: tx00000000000004d47b0da-0063a1dc26-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.fc9732e410856275e19c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: ae20b84290b202b06f4835798d927eea
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258756,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34601
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/15368.6709a9067ca6c5d156bf.js
151.101.129.46200 OK 8.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/15368.6709a9067ca6c5d156bf.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (21162)
Hash 92ddd882f9d100422e341567c1d7fe80
016ec4fa2f903bf9422485b3a73a1e86fa720374
e7fee200cfa5573482c1b8d6216974dbeb39dd4b839a8a54465e658f900143e9
GET /app/website/js/15368.6709a9067ca6c5d156bf.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"7c6b90d0260105cd712467cff1b7b8e0"
x-amz-request-id: tx00000000000004d088df5-0063a1dc2b-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/15368.6709a9067ca6c5d156bf.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 1a86a3232974b0f4bfb50e87bf996cb4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.269352,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8585
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/97167.89a6bbf7a1fa16f311bb.js
151.101.129.46200 OK 8.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/97167.89a6bbf7a1fa16f311bb.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (17943)
Hash f8b9c38d83b97bfac603ed3b44a96cc6
30a29a29fadfc941281fa9e1fd11aa930ae6d325
c2d21656128051639e0d3763350c414363214ac22ecce3d807c82178e4dcb667
GET /app/website/js/97167.89a6bbf7a1fa16f311bb.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Dec 2022 17:43:46 GMT
x-rgw-object-type: Normal
etag: W/"02073d22599e8cf4dd202d26113a8439"
x-amz-request-id: tx00000000000004b7226bd-0063a0a363-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/97167.89a6bbf7a1fa16f311bb.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 61e5d5675664de05b2475456ac8af837f62daad6
x-request-id: 4cb97fcf48a7f8f726fcd317414e5b2f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 609709
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.270642,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7988
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/header-4.5dfd76774341bbc6d516.css
151.101.129.46200 OK 6.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/header-4.5dfd76774341bbc6d516.css
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (23937), with no line terminators
Hash 86eb983a4b9b64ae2817bd0cc7302451
ffaa9a1b58351b5b2032044869bcc3657715bb29
a311744a76b85da047ab1eedc7d48cc7302dbe8a53033232f56c50decb29472e
GET /app/website/css/header-4.5dfd76774341bbc6d516.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"c6c31122fc6a1959470b13e6fd72f724"
x-amz-request-id: tx00000000000004e7e127e-0063a4c1fe-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 859e405960d198ac4ed1a96621f8a6ee
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 339669
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.272317,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6251
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/15259.402801be5fca5ae67012.js
151.101.129.46200 OK 1.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/15259.402801be5fca5ae67012.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (4114)
Hash 62dd5821ecf55f387f235b5a781383d1
376eb42416e9611992843a56e045b243e3f4b0e5
ddb88d175fd2a97358a46dea9ac2647ca9711c40a022b0c371b3f612c61c103c
GET /app/website/js/15259.402801be5fca5ae67012.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Nov 2022 21:38:49 GMT
x-rgw-object-type: Normal
etag: W/"8e8012f51a76c3a9875803c77a5ad66f"
x-amz-request-id: tx00000000000003d4822ee-0063867c53-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/15259.402801be5fca5ae67012.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 816ece5f6932666fedb5f058fa3c5c7398fbad59
x-request-id: 91e6874ed5232d867b34674a41edb064
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2227255
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.300540,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1811
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/12101.f98ef4383ce2f9f845ea.js
151.101.129.46200 OK 10 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/12101.f98ef4383ce2f9f845ea.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (12284)
Hash 7bdf1cf503178b75d23dd20689feeee6
ba39b040e71527912012503b31571614fb998508
04e9b751a7cb181f3bf9b0942816cca3b77c19d4b5505e4668e01f299b9f2b31
GET /app/website/js/12101.f98ef4383ce2f9f845ea.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"215dd130f575ff8f69721a3d62ca74fa"
x-amz-request-id: tx00000000000004c20a82a-0063a1dc32-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/12101.f98ef4383ce2f9f845ea.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: f7c4225c0ba66030c3e64913d4f02e1c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.300899,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10022
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.232.197.188200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.232.197.188:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 2434
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 26 Dec 2023 19:09:53 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/12101.3c720822dca69faf7ab1.css
151.101.129.46200 OK 4.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/12101.3c720822dca69faf7ab1.css
IP 151.101.129.46:0
File type Unicode text, UTF-8 text, with very long lines (18788), with no line terminators
Hash cdc8871e0839e342cd5f87ffc2d8b921
b1b49eeb787dcc5de6bb3bd5ffd51f6a57780bc4
9a10a0e68cec1c9ce5ae80722cd2b66dd66efc6a1658872ba3b94d0219fee633
GET /app/website/css/12101.3c720822dca69faf7ab1.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 16 Dec 2022 19:39:10 GMT
x-rgw-object-type: Normal
etag: W/"737503780e39d7995d228d4b7b11e804"
x-amz-request-id: tx00000000000004c469460-0063a0a34b-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 2efde9c4b4156caa6441193cb264598e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.300736,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4366
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js
151.101.129.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (14371)
Hash 96e92269cc99556031fabc9e73733461
ff9ac5aa57bdd80b86c52d29b4738edbf46af7de
14bfa005a0baa49d32ca485037f87619d0ed448b09af1d2f9332af9bc21da270
GET /app/website/js/86433.0cf032f4de4b0c36930a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2022 20:02:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca6ec9c9ed1cfaf0a675d812cfc850c"
x-amz-request-id: tx0000000000000436b0bea-006390f1ae-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/86433.0cf032f4de4b0c36930a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5e3315cbb523c8811c17b27b3be58f9ac0f56b67
x-request-id: 4a72a30d88d5cb54f4b7d771bf631184
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1638262
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.301169,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12941
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css
151.101.129.46200 OK 1.7 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css
IP 151.101.129.46:0
File type ASCII text, with very long lines (5436), with no line terminators
Hash 3cd007ca346955ac0cba245458d27fb5
f5be00f74f36e2505a9217a70ffa58dddfb2294f
79c6922ca7e2ccf7968b3df8df9307da91ed8f73e0f33eb4743f862d39b344c4
GET /app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 01 Dec 2022 17:05:38 GMT
x-rgw-object-type: Normal
etag: W/"294b38fa4e234ab8a0094f0c9b417538"
x-amz-request-id: tx00000000000003e931211-006388df64-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e2a949e98eba277d0907a1fb5e29a7ee7b054640
x-request-id: 12b7fd1ec58f28d3e9bd716ffd273d15
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2167153
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.302059,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1736
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/65125.8a5e3ab270e0ed869187.js
151.101.129.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/65125.8a5e3ab270e0ed869187.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (6042)
Hash 8aa797358c17e8a88789b8b6c54aa8f7
385283fc2c904334f42232eedae89c1b7ef5fc1e
0dec8a1a6dfb6399031e8dce920f1ad4ba32a25ba2eecde58e4ad041df170133
GET /app/website/js/65125.8a5e3ab270e0ed869187.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 09 Nov 2022 19:52:55 GMT
x-rgw-object-type: Normal
etag: W/"a26f548e123aa35a8f80109396fe1d88"
x-amz-request-id: tx00000000000003c433071-0063867c74-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/65125.8a5e3ab270e0ed869187.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d3bfc3a9eea8d709f5cc8d078458489ccb39c0a3
x-request-id: 8bda8240de6bb04e7185ec63eb53a430
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2323611
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.301148,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5993
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js
151.101.129.46200 OK 791 B URL HTTP/2 cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (1638)
Hash 2d80e865f1df71512989f924d9ab5d3d
9e22b7838107f1acef9a37f275a6b06d3095e74e
9be7dd653b0a42289e2c949d4bb0a1011d78f8b777af26538343baa9d204ccd1
GET /app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:18 GMT
x-rgw-object-type: Normal
etag: W/"9ce8c2632e7b61c895e304a0bbbb31d0"
x-amz-request-id: tx000000000000020dd10ff-006356f8ae-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/contact-us-1.d29a1c0719d9da0dc41f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b71ae12a0ae22ce8f9c838c55a8daf2fe3e2d773
x-request-id: 3c5ae2024712fa737b9e7eae5191c10c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 3437595
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.303539,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 791
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/9918.aa3a83972188e468933f.js
151.101.129.46200 OK 12 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/9918.aa3a83972188e468933f.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (11873)
Hash 335165910c8b27e5aa9f837526f670d9
06e1c022c08058d95448aad69b0ad70a300f607c
cc14d67379adabdccf8967ca5032dc361e30d21f4baec4e15bc6ba44f39047ff
GET /app/website/js/9918.aa3a83972188e468933f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 15 Dec 2022 16:36:11 GMT
x-rgw-object-type: Normal
etag: W/"ef72cfa0c3b1f18d342b956bf10d3108"
x-amz-request-id: tx000000000000049810d73-00639b4d74-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9918.aa3a83972188e468933f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a800fb6c89fe892fee129e762f5e9f1187eece86
x-request-id: c423a91d1eb502eff847f01b8d717afe
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 959399
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.303877,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11638
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js
151.101.129.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (11924)
Hash 8ad847b73830f3ede30562fd222bf746
44e0dba76769e0b427fafe49550250b3691ce965
0de272e980f4373cd645be5e53de24d301c86cd37c0499339930accc46b12f92
GET /app/website/js/95283.44172b5777108b073121.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"563306feb4cf49a99e43e8c44d36578a"
x-amz-request-id: tx00000000000004d47b380-0063a1dc29-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/95283.44172b5777108b073121.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a979950f571f20c31c693dc4002453f29734a10
x-request-id: 0475bf190bb36c85b3bb926a3f53dbe6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.303685,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6018
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/footer-5.9c832c68ad8d8dd06301.css
151.101.129.46200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/footer-5.9c832c68ad8d8dd06301.css
IP 151.101.129.46:0
File type ASCII text, with very long lines (12874), with no line terminators
Hash 5ea90f2e954541b4dc9df05e00417a54
dca2ebfdd1df5ec4c273d7aec3f1ed457b9f16b9
9e4f235557c3b4b11dfc9af07e076bb3371a31e1aaf5a8c190a8eafc3cfeac2d
GET /app/website/css/footer-5.9c832c68ad8d8dd06301.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 15 Dec 2022 18:43:11 GMT
x-rgw-object-type: Normal
etag: W/"a540d6d50d0f8424ee1218a994342c52"
x-amz-request-id: tx000000000000049da8b48-00639b6b69-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f28619c22d756f5ea4206bf323ec8cd75f02f502
x-request-id: fa0c894898777b6f3ddddc55293e14f4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 950757
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.304150,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3625
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2
151.101.129.46200 OK 17 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2
IP 151.101.129.46:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "e43b535855a4ae53bd5b07a6eeb3bf67"
x-amz-request-id: tx00000000000003bf1a569-00631ec950-bfe27ea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 09db0b9815d1fe8dac449ecc2a7da2c932739637
x-request-id: de26db3a36ac7c76bffc24043f517b41
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 4034007
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.377725,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16740
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2
151.101.129.46200 OK 17 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2
IP 151.101.129.46:0
File type Web Open Font Format (Version 2), TrueType, length 16756, version 1.0\012- data
Hash 603c99275486a11982874425a0bc0dd1
ffeb62d105d2893d323574407b459fbae8cc90a6
4ffc35ac4d5e3f1546a4c1a879f425f090ff3336e0fce31a39ae4973b5e8c127
GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "603c99275486a11982874425a0bc0dd1"
x-amz-request-id: tx00000000000003ab80373-00638259a5-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: 0872297ad9202d270c2cfafe3af4bd23
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1790195
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.377554,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16756
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Domine/domine-v19-latin-regular.woff2
151.101.129.46200 OK 17 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Domine/domine-v19-latin-regular.woff2
IP 151.101.129.46:0
File type Web Open Font Format (Version 2), TrueType, length 17076, version 1.0\012- data
Hash 4d198f02e6372e6be2d640e3355d8c2f
888efc2898071341849da009080aafb69879ec3c
e8dbb6559bded8cd912b4ea84b3c4462ed06c656f9e23ba957f126fdc366995f
GET /app/website/static/fonts/Domine/domine-v19-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: "4d198f02e6372e6be2d640e3355d8c2f"
x-amz-request-id: tx00000000000002c23920c-006369a35d-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 54ba3e5f2029232dfc83f286c3e101298370221d
x-request-id: e384a08d27ac93cb832b0f58600fcbdb
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 4214308
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.379169,VS0,VE5
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17076
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
151.101.129.46200 OK 351 B URL HTTP/2 cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
IP 151.101.129.46:0
File type ASCII text, with very long lines (626), with no line terminators
Hash ee20922f55875dd45d7acae546cadedc
491672dcd84153d29c9e2346e0f78d1fef5e729d
6594eb11c5c147a510920933dbd3177b6678ce61f0bdc38a6377761534792336
GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000000000003106c3ab-006372be75-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dc3e8c554bdd1a0853a3631849a999d1346b5f4d
x-request-id: 72cbe81acfb270119614b8c0a550566a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 3599405
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.497668,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 351
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/free-footer.15aead6eeba7d5c05788.js
151.101.129.46200 OK 3.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/free-footer.15aead6eeba7d5c05788.js
IP 151.101.129.46:0
File type ASCII text, with very long lines (7460)
Hash 76d8ec5e01e8b74adae27eaaf5cde45d
23af3dbc6657ff5fb675609bfe6a39386fa72b1e
6daa6563cd9c314a08051e8cb9dbc226ca59bd3a44df3bba650f474783cf8804
GET /app/website/js/free-footer.15aead6eeba7d5c05788.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 17 Nov 2022 16:52:48 GMT
x-rgw-object-type: Normal
etag: W/"4bf2d5346ca6cfcf2337aeea4e0f43ff"
x-amz-request-id: tx00000000000003c518db2-0063865978-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.15aead6eeba7d5c05788.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: f359eeb7885bee873096734601f27b5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1790195
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081794.501521,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3226
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.232.197.188200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.232.197.188:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1892
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 26 Dec 2023 19:09:53 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=59117af9-f302-4e64-a525-5c9b77d7986d&batch_time=1672081790001
3.233.155.139202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=59117af9-f302-4e64-a525-5c9b77d7986d&batch_time=1672081790001
IP 3.233.155.139:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8cb07e5a79ef33339871808bde239ac6
39506d40b983471c9ce526ff768a9762ce7f135e
18e67702315f08fa161933dc870eec1f5c649e100ce97014cf5ff3b6395ea2a5
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=59117af9-f302-4e64-a525-5c9b77d7986d&batch_time=1672081790001 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 16266
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
199.34.228.39200 OK 79 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9
Content-Length: 77
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081790.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:53 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn134.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
199.34.228.39200 OK 182 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9
Content-Length: 89
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081790.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:53 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu78.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
btconnect-109798.square.site/app/website/square.ico
199.34.228.39200 OK 6.5 kB URL HTTP/1.1 btconnect-109798.square.site/app/website/square.ico
IP 199.34.228.39:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /app/website/square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081790.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:54 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a88764-00628473fc-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn65.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: e53cc1fdf1b0aeb696aba6ea4fa09b58
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9295de61-30c5-4b99-8826-cb3a0b8e3370&batch_time=1672081790519
3.233.155.139202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9295de61-30c5-4b99-8826-cb3a0b8e3370&batch_time=1672081790519
IP 3.233.155.139:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e9c598ee0ca9dc55eef583b99a1703a9
296d9896e8d774af9d8be15adb053d18e43ce5c2
a97e815714992cda6d01ff7cfb3c6b5235b7eb4392c1f824d0ec56ea97b389f6
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9295de61-30c5-4b99-8826-cb3a0b8e3370&batch_time=1672081790519 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15922
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Mon, 26 Dec 2022 19:09:54 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/footer-5.7305d26a62bb3de50d96.js
151.101.129.46200 OK 0 B URL HTTP/2 cdn3.editmysite.com/app/website/js/footer-5.7305d26a62bb3de50d96.js
IP 151.101.129.46:0
GET /app/website/js/footer-5.7305d26a62bb3de50d96.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:19 GMT
x-rgw-object-type: Normal
etag: W/"633437cf47ec43a8de466a2f1765b18b"
x-amz-request-id: tx000000000000020dd0cd3-006356f8a9-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-5.7305d26a62bb3de50d96.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: 74c725ffd0d360ec86a917007a845996
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1782393
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.304092,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1322
X-Firefox-Spdy: h2