Report - btconnect-109798.square.site/

Report Overview

Submitted URL
btconnect-109798.square.site/
IP
199.34.228.39
ASN
#27647 WEEBLY
Submitted
2022-12-26 19:10:00
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
72

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.77.32
btconnect-109798.square.site	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	36 kB	62 kB	199.34.228.40
ec.editmysite.com	12806	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	1.7 kB	44.232.197.188
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.215.91.121
rum.browser-intake-datadoghq.com	11420	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	1.0 kB	3.233.155.139
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	2.0 kB	104.110.10.32
cdn3.editmysite.com	32188	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	18 kB	600 kB	151.101.129.46
cdn2.editmysite.com	11564	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	26 kB	151.101.65.46
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	1.9 kB	108.157.217.47
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	736 B	3.8 kB	104.18.21.226
sentry.io	2743	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	544 B	416 B	35.188.42.15

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc
2022-12-26	medium	btconnect-109798.square.site/	BT Group plc

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-26	medium	btconnect-109798.square.site/	Phishing
2022-12-26	medium	btconnect-109798.square.site/	Phishing
2022-12-26	medium	btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/visa.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/applepay.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]	Phishing
2022-12-26	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/discover.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/jcb.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg	Phishing
2022-12-26	medium	btconnect-109798.square.site/square.ico	Phishing
2022-12-26	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]	Phishing
2022-12-26	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]	Phishing
2022-12-26	medium	btconnect-109798.square.site/app/website/square.ico	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	cdn3.editmysite.com/app/website/js/63481.2c08ab74c1e39b2c8681.js	18 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/63481.2c08ab74c1e39b2c8681.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:52:44 Last Seen2023-03-12 15:42:05 Times Seen1 Hash a1ce9b1d02fed3fb7daeebd5438fe249 88aa35698e8e34071f31dd5aa9b45b40ff52a93e c29641c2144dc0f2f0440c4d92fe90e960594c5feb9b2fb078cf8ea73d669fc0 Loading...

	btconnect-109798.square.site/	2.0 kB	2023-03-12	2023-03-12
Pretty URL btconnect-109798.square.site/ IP 199.34.228.40 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 08:38:10 Last Seen2023-03-12 08:38:10 Times Seen1 Hash df0375fb3c5de41cc8d4318d64253aa4 38725dc13d2271ec360177176963cc403dd78519 94bd85be61d84e4ee9531a5496f8b7de396c15670fbcfd1c48e537672de4d5dc Loading...

	cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js	12 kB	2023-03-07	2023-09-09
Pretty URL cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2023-09-09 01:51:06 Times Seen5973 Hash 40372ca3b0cfa19f4e5d664243108364 a47b48e207eaeda408cc63d1f201b8cfc2a06730 2dcf45da386abc134ac7a7d918fb0385920056ce12c85d75a1318bcdabad768f Loading...

	cdn3.editmysite.com/app/website/js/home-page.1092c6109fdd13295262.js	24 kB	2023-03-09	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/home-page.1092c6109fdd13295262.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:14:02 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 14d95afd9d62681653cd72d19984db65 08890d67b1d059a9ac40736f8c30a25d4f21cd0e ffc822cc74405f8bb5bb627be352222f032975ecc245426874373fb26469cce6 Loading...

	cdn3.editmysite.com/app/website/js/26162.fcc843ad2a6dbf5e659e.js	14 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/26162.fcc843ad2a6dbf5e659e.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:45 Last Seen2023-03-12 14:58:45 Times Seen1 Hash 3eb60eade85131c038655bbbb861a927 a6f4741608eedf936e2d75c815515f015354c4a1 40450f4be632b784a13a62b8b6d0a8ef2f76d9c00c6987c2fd960fac2e30a64c Loading...

	cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js	13 kB	2023-03-09	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:45 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 563306feb4cf49a99e43e8c44d36578a bf6f466772abf7a5fd8fb56bf9f400d697916beb 8957e7f3429e7a41732fd69a3027d24876bb90cf2969f3f04d728ad9eb3c8860 Loading...

	cdn3.editmysite.com/app/website/js/15368.6709a9067ca6c5d156bf.js	26 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/15368.6709a9067ca6c5d156bf.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:44 Last Seen2023-03-12 14:58:45 Times Seen1 Hash 7c6b90d0260105cd712467cff1b7b8e0 2d78131fa9e0b0095b5ed6474a5d1f409771ed65 e0efe9b759b950c481af52f0e11117119ac245b820160d3f174903b3a3ace398 Loading...

	cdn3.editmysite.com/app/website/js/46150.06c1006bd234778ad196.js	14 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/46150.06c1006bd234778ad196.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:45 Last Seen2023-03-12 14:58:45 Times Seen1 Hash b12872b2af2d4a38e26e7173a902b2a4 d477024e5e0c4156123cb7e342107643829fc7cc 235804b1fc0c30a7b0b3a58b263a407a7ba6ebf93e2cc2ddf6c27d701d2ded5b Loading...

	cdn3.editmysite.com/app/website/js/78084.8d43a7cab6170d6b418c.js	14 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/78084.8d43a7cab6170d6b418c.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:44 Last Seen2023-03-12 14:58:45 Times Seen1 Hash fc09495134e054c9d27232bbafb29904 84d69d1e91822c60ac56a8b7b1416028ebb557ab 97f630c994a29a67db212079a151f569710c18183668ba7ef8e4d4be0ac774c9 Loading...

	cdn3.editmysite.com/app/website/js/15259.402801be5fca5ae67012.js	4.1 kB	2023-03-08	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/15259.402801be5fca5ae67012.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:45 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 8e8012f51a76c3a9875803c77a5ad66f 5efb7da27c89c9d1f20d94c73d4c9058df1a40bb beb949ba37c6f0cd18a166f2be043ef43143b3dc2e9988b52d293aafbd5ce5ee Loading...

	btconnect-109798.square.site/	19 kB	2023-03-12	2023-03-12
Pretty URL btconnect-109798.square.site/ IP 199.34.228.40 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 08:38:10 Last Seen2023-03-12 20:40:40 Times Seen1 Hash 53cf0141425c55b59aef473fd95be43a 2be91c97ffb61f25c9e0b77b0bfd0209be6d1973 073e6dc51f19191ed0525ae1cb9d94ff19e665d1c003df062b0661b7d6b2914f Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-04-26
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-26 17:14:22 Times Seen28764 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	cdn3.editmysite.com/app/website/js/8065.d6e8983cc0821f0f67c2.js	13 kB	2023-03-09	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/8065.d6e8983cc0821f0f67c2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:01:15 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 419ee3b163884ff81f8748d5981c785a 96547a773140b065d0cbae165e5730f59dc6bc2c a5b88062d8e82872b535b26d05432d8d6fee0ae919098b80a2460c5bcb835f67 Loading...

	cdn3.editmysite.com/app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js	36 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:44 Last Seen2023-03-12 15:42:05 Times Seen1 Hash 37111ca05ad9136805e13122b23d86ca 4eeaca2cbd5f1d2fb5b14208375a60231aeef6bc 144fa365ac81ebf910a471c8495cbabfd6e9bd90605a0b59749202cc816bb6d4 Loading...

	cdn3.editmysite.com/app/website/js/65125.8a5e3ab270e0ed869187.js	15 kB	2023-03-08	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/65125.8a5e3ab270e0ed869187.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:45 Last Seen2023-03-12 15:42:05 Times Seen1 Hash a26f548e123aa35a8f80109396fe1d88 6231fb12c68f478100185d6d39ea1884308a43f6 ace94d417693801e32b94ae947a760a97cf7694de7af59f925e6d6e40a1d87ce Loading...

	cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js	1.6 kB	2023-03-08	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:45 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 9ce8c2632e7b61c895e304a0bbbb31d0 4960e690352b9250dccb455638b39366f8c83dbb 6d5688b388cf62ea34b817b8ef1f342967fc1a0604a422e85b53a89615f47973 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 17:15:16 Times Seen37097165 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn3.editmysite.com/app/website/js/languages/en.a54c52ad7eeddd58eae7.js	567 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/languages/en.a54c52ad7eeddd58eae7.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:45 Last Seen2023-03-12 14:58:27 Times Seen1 Hash 2ca8c36caecbe708a26417dd02d2aea0 646bae5bfd487a8df11689398cd63c87d0f4850b 8e00ec89cb67130904867283c7f3f94b0c6d077bf2d98a95da4c84796d72bbee Loading...

	cdn3.editmysite.com/app/website/js/2592.25b019af08e040370742.js	9.9 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/2592.25b019af08e040370742.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:53:57 Last Seen2023-03-12 19:08:16 Times Seen1 Hash ede1592c23126b943ce3fa9029209715 612f41284307691b93355ad8905c93560a01c8c1 5a9e2a8f3bd7cd8554e63e715301f43c581fbed29d1a66250875dc79b1dad3ec Loading...

	cdn3.editmysite.com/app/website/js/89814.34c178d44259563f7567.js	15 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/89814.34c178d44259563f7567.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:53:57 Last Seen2023-03-12 14:58:45 Times Seen1 Hash 60cbce4947954462906cf7eee4d79fdc 45e2f3061e0ecc2874a76498ab520d9d0a6df4a6 cfdef1def28a5f1582e7a40564eb86f5ff05dc74bc9d0b6ef76fa70e8b2b6d21 Loading...

	cdn3.editmysite.com/app/website/js/97167.89a6bbf7a1fa16f311bb.js	18 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/97167.89a6bbf7a1fa16f311bb.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:44 Last Seen2023-03-12 14:58:45 Times Seen1 Hash 02073d22599e8cf4dd202d26113a8439 a67f7dfa329f20770e39060f6c1b37ca10fd9986 d7e0654b8f25d72ddb2d1246dc53db3ff2b1e62386626073a1a62606b58761a5 Loading...

	cdn3.editmysite.com/app/website/js/73781.4fcf0dae3a53d0b09f0c.js	49 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/73781.4fcf0dae3a53d0b09f0c.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:45 Last Seen2023-03-12 14:58:45 Times Seen1 Hash 2722e8629ff97196c86c1e613d14c00d a93e06d2df809ef56934154912ea6a35948a3450 8765772431e99ddf09a08375c836f11e67bc4dc0d3cf20137da6b080eff7ff54 Loading...

	cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js	8.8 kB	2023-03-10	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:24:38 Last Seen2023-03-13 00:46:22 Times Seen1 Hash b0eb0e08db2b8d54e1da1bfa5020e5a9 4b442fe7492f32658ad2347991d06f3b1cc3588c 9b1a293008590f3490f11d37537620e84e3a371c64563916eafb552308c4d0db Loading...

	cdn3.editmysite.com/app/website/js/9918.aa3a83972188e468933f.js	35 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/9918.aa3a83972188e468933f.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:52:44 Last Seen2023-03-12 15:42:05 Times Seen1 Hash ef72cfa0c3b1f18d342b956bf10d3108 24dc023e0b841f9fbeaacba2ad0a2305c1c63294 5c821e04dd9450f4da5810bc6c5c645b2eb65c8bdafcb9ff11bd892574f76b66 Loading...

	btconnect-109798.square.site/	1.3 kB	2023-03-12	2023-03-12
Pretty URL btconnect-109798.square.site/ IP 199.34.228.40 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 08:38:10 Last Seen2023-03-12 08:38:10 Times Seen1 Hash a802efde991a07da3def05add0371996 d8dda0a09055fda9c16dbc56d2fee6ea5f500934 1f982a0c16275c250d2765c46db8b8b8e116b5fc3b6f9ac1060a43e4c36d6b8b Loading...

	cdn3.editmysite.com/app/website/js/88857.1ec9bf4b0627e8da52ef.js	7.4 kB	2023-03-09	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/88857.1ec9bf4b0627e8da52ef.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:14:02 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 985834e4a4d0cd0329a71de7fe86da24 bb90029bebcb4fb9708e6161abdc0e96ed5bbb21 4f5c29b59aaf72b6bccc4d308b70e0a5b9a5101841ad814bd176045a4be2a517 Loading...

	cdn3.editmysite.com/app/website/js/40846.a57e3a8ee8e6235cd269.js	10 kB	2023-03-08	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/40846.a57e3a8ee8e6235cd269.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:45 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 630e018251d928d196cae2e328d36580 d02226d47be4e789fc591930de832e625e6af77e 65b13e546ef3d8375001b227acdefed3dbf465fd892572b9de5194db7bf721da Loading...

	cdn3.editmysite.com/app/website/js/footer-5.7305d26a62bb3de50d96.js	4.2 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/footer-5.7305d26a62bb3de50d96.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:28:25 Last Seen2023-03-12 22:24:12 Times Seen1 Hash 633437cf47ec43a8de466a2f1765b18b cfc07e819def404655a15c4706d4dacb29f8bd62 5d4dcc98d9b15863ababa4fa9d2c9d41dc16372b30034253d73c05e8b3c87402 Loading...

	cdn3.editmysite.com/app/website/js/free-footer.15aead6eeba7d5c05788.js	7.5 kB	2023-03-08	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/free-footer.15aead6eeba7d5c05788.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:45 Last Seen2023-03-12 15:42:05 Times Seen1 Hash 4bf2d5346ca6cfcf2337aeea4e0f43ff 2af35c057edc730350ea06ad8a863537677a7310 11db1e70a3cd40b9476382aecfc71eff0b7649e571222eada092c5a1024e63dd Loading...

	cdn3.editmysite.com/app/website/js/runtime.3423f96bf3579c9f0c99.js	57 kB	2023-03-10	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/runtime.3423f96bf3579c9f0c99.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:24:38 Last Seen2023-03-12 13:16:48 Times Seen1 Hash 60a949514b3c0307f13b27391bb6b56f c30d2b36d27a58bb87c45ce683c048f7d315eb1e b24dca7aac0961bfa96ced9d9002133250776c245cff23d6bc74ba4c2477975d Loading...

	cdn3.editmysite.com/app/website/js/12101.f98ef4383ce2f9f845ea.js	28 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/12101.f98ef4383ce2f9f845ea.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:45 Last Seen2023-03-12 14:58:45 Times Seen1 Hash 215dd130f575ff8f69721a3d62ca74fa 3f65f0ff57120b5b84b1ad85c091bd3855bbae22 52847b7e50cda0aaa4e97583ddfa97248755c5e2128d41c5eeba972d6069d16c Loading...

	btconnect-109798.square.site/	140 B	2023-03-07	2024-04-26
Pretty URL btconnect-109798.square.site/ IP 199.34.228.40 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-26 08:22:46 Times Seen12079 Hash 1fdd2479d6ba8d5520c042ef8a2777ad 383ea6d170518471e06b0bd5330c748d7d966ef4 6cd9e9dc34c5d199beb0e095738cbe706c622914eb1a4a3a4285357d5b8f81cc Loading...

	cdn3.editmysite.com/app/website/js/78918.23fa48c78bc95517d94d.js	12 kB	2023-03-09	2023-03-12
Pretty URL cdn3.editmysite.com/app/website/js/78918.23fa48c78bc95517d94d.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:14:45 Last Seen2023-03-12 15:42:05 Times Seen1 Hash f5b176da6835b7692a686489583ab238 4874bd2e3b45abfbaf2ce5a0456bff9ef1c05bae a351096ddb74622f331a2b2dc79ac59d7f89a31c1e17049cabbc85e00aeba569 Loading...

	cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js	35 kB	2023-03-08	2023-03-13
Pretty URL cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:38:01 Last Seen2023-03-13 00:46:22 Times Seen1 Hash 0ca6ec9c9ed1cfaf0a675d812cfc850c 47caf62673e47790d9dcc82be41d7582a479c8eb e73a766904d6a0d20a254d7a5c380f9ea9523fdddad4186983d08663f716dccc Loading...

HTTP Transactions (95)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb20c18681040b740ab1730562beb45c
abedefb801b0e13987d6619a77e0368771f9dfcb
288c1832db391da57e3d74ffa893ec2c47ef9c1945f85b88473c563b55a3dfb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "288C1832DB391DA57E3D74FFA893EC2C47EF9C1945F85B88473C563B55A3DFB3"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6168
Expires: Mon, 26 Dec 2022 20:52:37 GMT
Date: Mon, 26 Dec 2022 19:09:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9cce060ddc316540d079e6816a1e7412
709a74969d1996d2b35ef0f7f34ae18455169f1e
6d58b895476c9ab451d8fc51df98809adca445bc6e9d720430e80a0c85242879

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D58B895476C9AB451D8FC51DF98809ADCA445BC6E9D720430E80A0C85242879"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3124
Expires: Mon, 26 Dec 2022 20:01:53 GMT
Date: Mon, 26 Dec 2022 19:09:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b2d59bdbb1ca6324590988ec031cf1fc
bfd4e25af37dcde4bac38d9b178c5ac8e50f8834
cef2180120ef42ff09d54577229c058d41d2c569d485f5a6dcfadc74bf8aa647

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEF2180120EF42FF09D54577229C058D41D2C569D485F5A6DCFADC74BF8AA647"
Last-Modified: Mon, 26 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2889
Expires: Mon, 26 Dec 2022 19:57:58 GMT
Date: Mon, 26 Dec 2022 19:09:49 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 26 Dec 2022 18:35:02 GMT
content-type: application/json
age: 2087
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: bGR2vaUN2Ml0qYabBPNOiwHIhmpQsZuS36/L82J+TfiR1jVxRghx6jj3AgeMTUQKMPnN9t5uRlg=
x-amz-request-id: XPBV6CDJHPK1CY7G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Dec 2022 18:55:26 GMT
age: 863
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

btconnect-109798.square.site/

199.34.228.40

302 Found

390 B

URL HTTP/1.1
btconnect-109798.square.site/
IP
199.34.228.40:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
390 B (390 bytes)
Hash
dcb73e62e7a4ca81c9e1456d6d52e416
7749c432b749a879858608520406879d486b4b6e
f40301d8285445c9d9597d0b196c3d7926cfd005d02a021a0c23f086b017fe74

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:49 GMT
Location: https://btconnect-109798.square.site
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ik5uMVNaeDVFVjBjdnJObTBVUTMzQ2c9PSIsInZhbHVlIjoiN2h3NVRaaXdvUmE2a3MrVkxCWUF0anl1MmNBOUU3dFZRd284WHl2Rm9ENlRGNHJKcEFnRjV1eUxETE1wUGdFaGptUVFQZ2pKcDBqSnF1NU92MlFtZlwvNnFQNFdIcjZISytscU1XMVM1N2hvUm8zR0dXemhLaENJTGtcL0RvU0lXMiIsIm1hYyI6ImY2ODgyN2FlNjA2ZTViZTZhZDgyMjhjMjZmZTIzNjNiNzZhNDNhYWY3YWNjYmNmMWJhYmVlNWFlNjA0MGM5MzEifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:49 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IlhcL1J3dEFzMzdaUFFEWEsycVdmMHJ3PT0iLCJ2YWx1ZSI6IjFVb1JycDNCZXk3NzlXYnI1VWxXcW0rdDJSK3FPZDh3YTFDNXVjbG9pSUhyRXdPT3FLYlgwT2l0UFMrZUs4bmRcLzMwRGdtMWhSY1p5T1A5cW95RG9qUGpDMlBPaHNUKzVSekVJbUxzU3k5Y0JJY1dJcUpHUENwK2g2TEdhT0twZCIsIm1hYyI6IjI2ZjcxNmQzMjA1MGY3N2RkYmEwZWVjYjc5ZjZjNTVjMjU1N2YxOTY0NDM4NWE3MzAzNGMxNjc3YmUwODllMDAifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:49 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6InFraElVcThJaytVOTA1aXhzcnRrRkE9PSIsInZhbHVlIjoiY2JkemFDUUVqeHdLdkpWZDFIbFVHUE4xUFdTWDdwc1hzcmxQQmh6Tm55RmdNcGY4SCtUVTd0bVdYVVVcL0xhYVZWM05vYlVuMG94aTIwbDBkcHk1KzB1aTJnRzNSMEFZMU5rK0VqUVB2QUdSVE1aWDZlV0ZWdHhEdGhRVlFRS1N2IiwibWFjIjoiNDhkMmU3YWVkYmRmYTlhZWJmNDE3YjFjNTRjNTFjNTIxN2Y5ZmM3OGZiNWFkOWEzMmMxNWRhMGNiODNmOTZjZSJ9; expires=Mon, 09-Jan-2023 19:09:49 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn122.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 47c1ec325e10c58927445da7922f8a5c

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 26 Dec 2022 19:09:49 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 26 Dec 2022 18:33:30 GMT
age: 2180
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
104b12f08bcb6b129451c267d7f109fd
a5c4d5894c931e0437a83bfd8d8ef78c0b7cb8db
0ae58889f4bbb874a9d940d004f2c8b10a4f7dc8b9887429409a947065f14b33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "0AE58889F4BBB874A9D940D004F2C8B10A4F7DC8B9887429409A947065F14B33"
Last-Modified: Mon, 26 Dec 2022 10:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3318
Expires: Mon, 26 Dec 2022 20:05:08 GMT
Date: Mon, 26 Dec 2022 19:09:50 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
68ee4e2891b5a52719997e4ef8cb7aab
ae2e49eff010551d7f3dcf005a51530ee2910480
2bae50a834a34f248f6a79cf6f191dcf709c24b884f2d3da7fa43985c6b2d48b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2792
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 19:09:50 GMT
Last-Modified: Mon, 26 Dec 2022 18:23:18 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

btconnect-109798.square.site/

199.34.228.39

200 OK

9.2 kB

URL HTTP/1.1
btconnect-109798.square.site/
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (19231)
Size
9.2 kB (9214 bytes)
Hash
dbc48661d83c05d7980ee37f6bbfd210
1d8bfc74aca462cc8bde3023b323decc816e7582
f8f7db3aa5b6eb5d785f479cd28b47d6ca4fe0e073bbf3bcead7d3118275ce48

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.1.1654494730.1654494728.31da809a-5d97-4f1c-b3dc-23df3825d286; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:50 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; expires=Mon, 09-Jan-2023 19:09:50 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; expires=Mon, 09-Jan-2023 19:09:50 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:50 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu85.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 9a3c270f5c2e118fe958c13f41080932
Content-Encoding: gzip

push.services.mozilla.com/

34.215.91.121

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.91.121:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4U+PPQJC9l0JVRNN7EznVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XT6AZY1ORm7r7L8VOoySMxGDeBs=

cdn3.editmysite.com/app/website/css/site.0603219adb0dabdea940.css

151.101.129.46

200 OK

24 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/site.0603219adb0dabdea940.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (64921), with no line terminators
Size
24 kB (24143 bytes)
Hash
a1dc42be74cae5a6edc98bda98625402
9d3a21200c5d8c50f523178c175fa96529467328
afa1e6acc69a549bcf6037339eb5cc359fcda390a0f785dbc45bfc3ba138e40d

HTTP Headers

GET /app/website/css/site.0603219adb0dabdea940.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"0eeb710a07b97b08b45a3e578b4a5e19"
x-amz-request-id: tx00000000000004e71d2a5-0063a4c1fb-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 5baa6c7dfac8777e91a6d7bc6839ccac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 339670
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.806119,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24143
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.65.46

200 OK

26 kB

URL HTTP/2
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2512)
Size
26 kB (25752 bytes)
Hash
234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 19:54:04 GMT
etag: "639cccdc-124fe"
expires: Thu, 05 Jan 2023 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu75.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
age: 383469
x-served-by: cache-sjc10061-SJC, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 2786
x-timer: S1672081791.805300,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25752
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.5ca94e9b102221723df8.css

151.101.129.46

200 OK

23 kB

URL HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.5ca94e9b102221723df8.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (64204), with no line terminators
Size
23 kB (23328 bytes)
Hash
de8a9c4d7a81406cdd1cef8a79d8e9e8
f379b6dbde2747acb65639e5c2a4dac7d42b2e7d
043297a5ff41138959b3246916a39939a51eb6918c4317a6447ad0f77de926d1

HTTP Headers

GET /app/checkout/assets/checkout/css/wcko.5ca94e9b102221723df8.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 12 Dec 2022 20:30:57 GMT
x-rgw-object-type: Normal
etag: W/"66ce001adf4a188f3c097ccbca133e82"
x-amz-request-id: tx000000000000047392c62-0063979012-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 1204454
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.806342,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23328
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js

151.101.129.46

200 OK

5.0 kB

URL HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11882), with no line terminators
Size
5.0 kB (4998 bytes)
Hash
20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac

HTTP Headers

GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 3606530
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.808385,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4998
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/runtime.3423f96bf3579c9f0c99.js

151.101.129.46

200 OK

25 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/runtime.3423f96bf3579c9f0c99.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (51573)
Size
25 kB (25305 bytes)
Hash
b4d17f2eddfccd5ab1bb8a1e7b24720e
f76736ff3853740ef1f6ccf8760a00e19491e728
7d27f5cb45833f85311bb7afd91f6124848a38da9bc0936cfc189ec7be075a49

HTTP Headers

GET /app/website/js/runtime.3423f96bf3579c9f0c99.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"60a949514b3c0307f13b27391bb6b56f"
x-amz-request-id: tx00000000000004e95cfd1-0063a4c1fa-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.3423f96bf3579c9f0c99.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 5a2dcd05ba26e1147eb67797371cd045
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 339670
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.809165,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25305
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
ea13947a937ac14fbc0fbe04ef312df3
01613d599f3fea8a9e7162d31a268219a3e5b5a2
191947511c2e115639c8070780e33d82da790c8ba4387959b09f51fc64658955

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:50 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F3BCA8C7C7070982FB418B40C0AFC8A8423F64D1"
Expires: Tue, 27 Dec 2022 05:00:00 GMT
Last-Modified: Mon, 26 Dec 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3479
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77fc1cf8ff3a0b39-OSL

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
ea13947a937ac14fbc0fbe04ef312df3
01613d599f3fea8a9e7162d31a268219a3e5b5a2
191947511c2e115639c8070780e33d82da790c8ba4387959b09f51fc64658955

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:50 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F3BCA8C7C7070982FB418B40C0AFC8A8423F64D1"
Expires: Tue, 27 Dec 2022 05:00:00 GMT
Last-Modified: Mon, 26 Dec 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3479
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77fc1cf9087b0b65-OSL

cdn3.editmysite.com/app/website/js/vue-modules.9bc3531c7b14b533b653.js

151.101.129.46

200 OK

72 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/vue-modules.9bc3531c7b14b533b653.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (27432)
Size
72 kB (72192 bytes)
Hash
f4b29141d74cfc31ae87b2379bf827c6
d3cecf2609cbc423e0a59e9cad96c96595fc550c
77ba93a6fbe46719dede0298898f4d896c073a42d0c093179615edf38f1fd0e5

HTTP Headers

GET /app/website/js/vue-modules.9bc3531c7b14b533b653.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:22 GMT
x-rgw-object-type: Normal
etag: W/"be42f69ec175a01b6e195526f58dae71"
x-amz-request-id: tx00000000000003b70ac6d-006384ffda-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.9bc3531c7b14b533b653.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: 40250d3662d1b25130b369a7dbbdc2eb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 1795115
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081791.811414,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 72192
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/languages/en.a54c52ad7eeddd58eae7.js

151.101.129.46

200 OK

153 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/languages/en.a54c52ad7eeddd58eae7.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
153 kB (153417 bytes)
Hash
198bf21e2a17605ea05f70837be563cf
d5dfb49a31cec0b15e3707629c8a3fce887357af
d31d8b4e01f88825571ef83b04c73f8c4cc14446343fa693fc290b8bac714fc6

HTTP Headers

GET /app/website/js/languages/en.a54c52ad7eeddd58eae7.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Dec 2022 21:38:46 GMT
x-rgw-object-type: Normal
etag: W/"2ca8c36caecbe708a26417dd02d2aea0"
x-amz-request-id: tx00000000000004cc305e0-0063a0da4f-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.a54c52ad7eeddd58eae7.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3aa41add2fac27f522eefca85ba3c01708233cf6
x-request-id: 64d2d63e98dc8da494c91ea091228023
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:50 GMT
via: 1.1 varnish
age: 595693
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081791.812355,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 153417
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

108.157.217.47

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
108.157.217.47:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
856317103bde7a72d7b86fc7dd519fed
4aa41c665012f093ab02bbc5c50fcc21b9b12d2c
2040bce00cdd0112bc70ceeffe5e1c80b77726563c36b6e83a0c10b91afc29a7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Dec 2022 19:09:51 GMT
Etag: "63a88ba6-1d7"
Last-Modified: Mon, 26 Dec 2022 19:00:20 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: oDWCb1mKCgXop4FlRmJl_EQpIfuBikw5dzhQyXZ59TnHuRwwHFT85w==
Age: 571

ocsp.sca1b.amazontrust.com/

108.157.217.47

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
108.157.217.47:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
47d5697b0ad58722deaf2b9793f9199b
219cc2f0493c074e31d7888f6b573d900f2bf257
753d23c0d148384a0820b49676cf1d73459d80bc2e2efc60a38b8982eced7e1a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Dec 2022 19:09:51 GMT
Last-Modified: Mon, 26 Dec 2022 17:32:30 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 e15d64214925ae012e1d711871cc6452.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: 6VDi0LD-a4PmP8jM4agePkL6qvll4uDOLECwFf_ihSNoUhgbwJXwnQ==
Age: 5841

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.232.197.188

200 OK

0 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.232.197.188:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:51 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Mon, 26 Dec 2022 22:34:05 GMT
Date: Mon, 26 Dec 2022 19:09:51 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa97f58bb-2d67-4ddc-978e-1bf0230a9e6f.jpeg

34.120.237.76

200 OK

4.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa97f58bb-2d67-4ddc-978e-1bf0230a9e6f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.1 kB (4148 bytes)
Hash
b9d7f2c9f926dd26c3a7046454c9cfb1
0906cee4a98ea4bd2ec1ded9ef9d782871f34f84
fbdd3fc928d8d0d0258d1c1fe018f79c856c9ee3ac2623f5d55f5b0e93db4d97

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa97f58bb-2d67-4ddc-978e-1bf0230a9e6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4148
x-amzn-requestid: 68370910-934b-46b9-9d6f-e5b8c5003c1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dq7HNEUrIAMFkHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a7722d-3b68668640ef15eb015a4230;Sampled=0
x-amzn-remapped-date: Sat, 24 Dec 2022 21:42:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qWaBSEfp4eUWJ1-g1JbzsN5a5mUpKLbG-Qmt7QI0XPawV99fnsamoQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:49:57 GMT
age: 76794
etag: "0906cee4a98ea4bd2ec1ded9ef9d782871f34f84"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9452 bytes)
Hash
e38d94b0be1b10ecac941b497f57c861
12911cd039f5c7b05013ebbc369aec5613134906
38a41df0d4f4405e8ecf6b379431bdb87eaed40e20481262b43d1fd127c010fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9452
x-amzn-requestid: 41b87e86-25f2-4d3b-a4ac-ae9a933a75b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duMupEMdIAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c190-22b2693c043757fb5d58dda7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: StP3cRZB5uQq5vj2oEZZmxAsLlu-nsnDNjQBdeb_o6Rd3YsP7p2Qlg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:06:41 GMT
etag: "12911cd039f5c7b05013ebbc369aec5613134906"
content-type: image/jpeg
age: 75790
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9932 bytes)
Hash
e2665a6ae98ace2eab671f9e8a9f0978
d1b0b2b7bf8c8bf2e9765e9103908aba36989727
ae9125caee2dc267c67bf4f31f2669e03f65c47a43f2d0ab83081eb043d23d85

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9932
x-amzn-requestid: 280fdeaa-a0e1-4306-9adb-52c0f28b4002
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzGcjoAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-73e3e4b34b67da2d2dbb8020;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nR7WiQ1kUfI129AOECPfR181bNjexz6B7BEIYxDRiGNqfKCQPiBKOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:09 GMT
age: 76362
etag: "d1b0b2b7bf8c8bf2e9765e9103908aba36989727"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90be501d-93e5-40ba-98d6-b790fc50966b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10502 bytes)
Hash
5d780f4b4a5928afafeea1348a117ab7
f0623d0355e6b57a5b9bed048b93e1b6b102dfe9
ad6dd8216b30147c99abfff2d1672d731ff940b2fb1da015d3fd5b0b96d11d0d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90be501d-93e5-40ba-98d6-b790fc50966b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10502
x-amzn-requestid: 52ecc48a-9ba2-45ce-b4d4-a05b6bd49214
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dlFHaFnfoAMF6wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a51bc8-527601d115cb2f6d76d14958;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 03:08:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5obtiiP91WkrOa9NATTuqVwUG64JoT_PbMfG7rmw6BdgGhilopoCGA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Dec 2022 03:14:54 GMT
age: 57297
etag: "f0623d0355e6b57a5b9bed048b93e1b6b102dfe9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6073 bytes)
Hash
4d56ed7f66802ac154bc856e5bb69c13
3fc1162af1229f939cc1253aa86d476da51950cd
e10eed5b4c912f9730169ac07f9ba6c471f1d27c8d0efdfed8bb4a6cb5880869

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6073
x-amzn-requestid: 69e21df1-a420-4ad7-b0bf-4d9eacb5bee3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duOGEGvmIAMFoag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c3c0-6b8069e3057cf71d7284fbf7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:42:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgxS2QNcD1b_3t2BTbbnUpDp8F9GM--NIw4cVzoKxXL3btqDf9h-9A==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:13 GMT
age: 76358
etag: "3fc1162af1229f939cc1253aa86d476da51950cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10094 bytes)
Hash
ba61b2beeb64bfb5c38d0c7fd7c82a32
6bdbfc5daa929523a27de45683928e742431d537
573288644cb5ec3f13d0d19b84dd1dabe7cb834ba87704593af63dbd5b9d4f07

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0de44af9-689c-433b-9291-b5e6c980e352.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10094
x-amzn-requestid: 6937578a-43e6-4c68-a953-5f457b3f70e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNbuEXioAMFV8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2b1-09b3de421c367dbd09f8cf7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QMPD3U33gWb-LUXYnu6kfmGPFtst_gao0dNc1dvvsliZkTOyCO11tw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:06:44 GMT
age: 75787
etag: "6bdbfc5daa929523a27de45683928e742431d537"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.232.197.188

200 OK

2 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.232.197.188:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1994
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:51 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 26 Dec 2023 19:09:51 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2

btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400

199.34.228.39

200 OK

3.4 kB

URL HTTP/1.1
btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
3.4 kB (3350 bytes)
Hash
4a9463d86ebe0fc07b2c1d61117e6af2
ef0130f409c753d77b6f31878ae8537671aee48a
9288de1772ae84636ca3c486fe2a17fb809a57e52c045be5838500a00e207181

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/webp
Content-Length: 3350
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "pUVJox2pbF5IewxCJptLe0qIUOwSEzRRyBLBDBPyhlw"
Fastly-Io-Info: ifsz=4132 idim=224x225 ifmt=png ofsz=3350 odim=224x225 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000000000004f4d7f9c-0063a6a128-c696eea-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z458d
X-Storage-Object: 458d0a97c28699841111023901d9badf01a35ebd529bcd2c02871ae61e9a36f8
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-sjc10038-SJC, cache-pao17472-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1672081792.973677,VS0,VE27
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu148.sf2p.intern.weebly.net

sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7

35.188.42.15

200 OK

2 B

URL HTTP/1.1
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP
35.188.42.15:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Content-Type: text/plain;charset=UTF-8
Origin: https://btconnect-109798.square.site
Content-Length: 429
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://btconnect-109798.square.site
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
x-envoy-upstream-service-time: 1
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

btconnect-109798.square.site/static/icons/payment-methods/visa.svg

199.34.228.39

200 OK

2.2 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/visa.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Size
2.2 kB (2247 bytes)
Hash
98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx0000000000000343a09e6-00631274b0-c0351b0-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: bca12821cae50e4f65259cb3c7f3e813

btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg

199.34.228.39

200 OK

1.7 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Size
1.7 kB (1657 bytes)
Hash
1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001af98c5-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 64e7a1f988e64c740c1313346cd2b2db

btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg

199.34.228.39

200 OK

1.2 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Size
1.2 kB (1206 bytes)
Hash
2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001aa71ba-00628473fa-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: ccb14115dd49ab1d399da1e93b384a1d

btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg

199.34.228.39

200 OK

3.1 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Size
3.1 kB (3115 bytes)
Hash
2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001a5c24d-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 64c01b8bc35171280e146d654ea214d8

btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates

199.34.228.39

200 OK

70 B

URL HTTP/1.1
btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
70 B (70 bytes)
Hash
0202fec5c18173b1ccef517d7a8fb076
ed3c42952ab998b5f8f4570735caccb08bbbfbba
a496539bedf56d084f7654fb244367daf638da6ab09f7812b81c743baa995e26

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /app/website/cms/api/v1/users/139428721/customers/coordinates HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:52 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9; expires=Mon, 09-Jan-2023 19:09:52 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6Im02XC9PalFtOXJTMzlhTUdnKzRRXC9hUT09IiwidmFsdWUiOiJud1BHXC9vNm9KSk9iamNXXC9pVlhEMG1ZUWdwUkpIK2p2c1RvYkVOQXRmV0t4eDJIUDFsZXJaaVFBM1pKTlZqMHhyWEhJMFFraldQRG9adDJ6YTdRZ0QyOEIwMXdMdnhCQncweHI0WXZQSkhFbUpaRHFONmg3Q1k5dkJEOXZqdkVVIiwibWFjIjoiYzVlZDM0NzE4ZTcyZDBjMDZhYWU1NTNhYjE4YzZkOGRiZWZiYjFiYTQzZDRhOGNmYWE0MzQ4ODg5OWM1ZWM4MyJ9; expires=Mon, 09-Jan-2023 19:09:52 GMT; Max-Age=1209600; path=/
X-Host: blu143.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: f9600b520c0fa45c74c401ce1a997227
Content-Encoding: gzip

btconnect-109798.square.site/static/icons/payment-methods/applepay.svg

199.34.228.39

200 OK

3.0 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/applepay.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Size
3.0 kB (2986 bytes)
Hash
c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001ae660e-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu143.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 7b90165fcdd447f4fad96522cd069666

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]

199.34.228.39

200 OK

201 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
201 B (201 bytes)
Hash
bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9
Content-Length: 83
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:52 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu108.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]

199.34.228.39

200 OK

894 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with very long lines (894), with no line terminators
Size
894 B (894 bytes)
Hash
425945c21c361516d57dcfa68f2adfa0
fd1e931b775c396cd3f02d5bc13600e305c5a93d
e49bdcc237529abb3baee5c2ea30e106e2a9b05b78fcbc4542a271e435d38db8

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9
Content-Length: 78
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:52 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu124.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 894
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

btconnect-109798.square.site/static/icons/payment-methods/discover.svg

199.34.228.39

200 OK

3.1 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/discover.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Size
3.1 kB (3087 bytes)
Hash
9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001aa7132-00628473f9-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 3dfd986f27ca2c31e2ee8c7a7fdb605a

btconnect-109798.square.site/static/icons/payment-methods/jcb.svg

199.34.228.39

200 OK

3.9 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/jcb.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Size
3.9 kB (3876 bytes)
Hash
32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001af9a36-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 52634c6f7e4dd82dce15f0b7758ad2bf

btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg

199.34.228.39

200 OK

1.4 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Size
1.4 kB (1394 bytes)
Hash
4d9798d0983422b1931dbfb934e04144
b70cb2e3822c77177ba56a351e309d5394263105
880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/cashapp.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6IjFUS3ZDQkM1NTdWZHdJeHBBZ2FNcUE9PSIsInZhbHVlIjoiVlVJZFdwdWVFajM5bVEwSWdGektkUkV2Yk5mdEJLczBueHh6ZjlqczVPOHBlQUVNblV5bWMzZHc2VE9PSThOd0F5aVN1WXlwRHJUSVlYd29tOER4aGpyb2I0T0ZobmloTXQzMFBHU0RXUXpXeG5FZndTbWZBa2txN3A0XC9QOGNHIiwibWFjIjoiNzU0Y2UzYmVkNGQxMTkwOTA4MjY1MWI5OGM4ZDE3ODI0NGNjY2RiZTlhMDc1YjM4OGRmMWZjZjljNzQwOGQ0YyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:52 GMT
Content-Type: image/svg+xml
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000d958643-00629614fd-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu143.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: de3ae4c7b24b6ad0e70f94899d6a7b4d

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
60be6ff09098891be58a5e8ad40cc19a
8e6260f14f2f356a2b0e1fec7373f7410b562123
2223239ac6d524167b89c16955aec3446fd5f9bb245ad7d3302d468e31e120f9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3224
Cache-Control: max-age=134428
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 19:09:52 GMT
Etag: "63a94f04-1d7"
Expires: Wed, 28 Dec 2022 08:30:20 GMT
Last-Modified: Mon, 26 Dec 2022 07:36:36 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

btconnect-109798.square.site/square.ico

199.34.228.39

200 OK

6.5 kB

URL HTTP/1.1
btconnect-109798.square.site/square.ico
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
6.5 kB (6518 bytes)
Hash
d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6Im02XC9PalFtOXJTMzlhTUdnKzRRXC9hUT09IiwidmFsdWUiOiJud1BHXC9vNm9KSk9iamNXXC9pVlhEMG1ZUWdwUkpIK2p2c1RvYkVOQXRmV0t4eDJIUDFsZXJaaVFBM1pKTlZqMHhyWEhJMFFraldQRG9adDJ6YTdRZ0QyOEIwMXdMdnhCQncweHI0WXZQSkhFbUpaRHFONmg3Q1k5dkJEOXZqdkVVIiwibWFjIjoiYzVlZDM0NzE4ZTcyZDBjMDZhYWU1NTNhYjE4YzZkOGRiZWZiYjFiYTQzZDRhOGNmYWE0MzQ4ODg5OWM1ZWM4MyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:53 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a88764-00628473fc-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 959c8196cb8451896380455e476ea435

cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css

151.101.129.46

200 OK

184 B

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
184 B (184 bytes)
Hash
45eb1d539e7e3713ba21d3b762495241
a3ab579ddcbf6844d185c3a2b7e21b90e03fc8f0
fd87e35b1c208ed7ec8a1ff7b7a992113993b930cbffb505211571bd61897221

HTTP Headers

GET /app/website/static/fonts/Open%20Sans/Open%20Sans.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: W/"5a911d826579cde6887d45195f330549"
x-amz-request-id: tx00000000000002e3ef29b-00636c8aa8-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 09db0b9815d1fe8dac449ecc2a7da2c932739637
x-request-id: e05a8f8ee86bf7cf4b887a95520bc088
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 4024025
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.207093,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 184
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css

151.101.129.46

200 OK

146 B

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
146 B (146 bytes)
Hash
63e426ca2fc1f525e07549acbdb03c86
de204bf76765003228040392b785be8a4635f71e
7cd7ad8d4405b131406a53408c0ed82f5d0f5b8b0e715f9cff32321ecb11b81f

HTTP Headers

GET /app/website/static/fonts/Domine/Domine.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: W/"f859875369df59480c1798e4b7f47bac"
x-amz-request-id: tx00000000000003e58b3a9-00638837b9-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 816ece5f6932666fedb5f058fa3c5c7398fbad59
x-request-id: 7a7735d66fd94aff22b111fd918b5a57
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2210248
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.205968,VS0,VE9
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/26162.fcc843ad2a6dbf5e659e.js

151.101.129.46

200 OK

6.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/26162.fcc843ad2a6dbf5e659e.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11061)
Size
6.0 kB (6039 bytes)
Hash
1f45b0eb59b38813087f3794c00be8e9
c1fcf0d6f1bd5cdee7e01d7276b8860fc98ddc7b
86e134c388bec637d1f40b8b42d2a6afb06b8ee1fc3a1712e06a3ec3d855f96f

HTTP Headers

GET /app/website/js/26162.fcc843ad2a6dbf5e659e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Dec 2022 17:43:45 GMT
x-rgw-object-type: Normal
etag: W/"3eb60eade85131c038655bbbb861a927"
x-amz-request-id: tx00000000000004c4696b9-0063a0a34d-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26162.fcc843ad2a6dbf5e659e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 61e5d5675664de05b2475456ac8af837f62daad6
x-request-id: 3fb321cb8cc1202c3e41519054185039
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 609709
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.223102,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6039
X-Firefox-Spdy: h2

btconnect-109798.square.site/site-icon?device=ios&size=180

199.34.228.39

200 OK

1.3 kB

URL HTTP/1.1
btconnect-109798.square.site/site-icon?device=ios&size=180
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Size
1.3 kB (1299 bytes)
Hash
cf3a9fc9da142c7093ed2cd642a545db
630165f76a5e26e7bfb9db0326e8ac62ce69345e
14d2c0d565f8995ac59174d41f4b469e700dc21dfdb1b72cbca43a5c1bdf0503

HTTP Headers

GET /site-icon?device=ios&size=180 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081787.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikk0eVZQVVlXXC9qWDBtalZvY1dKckZnPT0iLCJ2YWx1ZSI6IlU0aFwvQzFsb3Rxb2RvZmdFbkUxeGhrMFwvYjJSRTBPKzFvTSsxTUdmSDFLQWY3cHpXaE5FT0VWZkVHNjNxUXpWTUNid09KS2NOMmNqelZIUzNPXC9zMzR3RWxFRk05aWhhRXVodVQwYTQ2VjFyc1M4eXBUaVFhaUV3eUFiZFAxWlJnIiwibWFjIjoiNGFjMzZjNjJjMGJmMTdhMjFhOWY0NTJhMmY3OGFjZmZhNTY4ZDVhMWRmNWIzODcyZDNiMTUxYjY0MGZkOWNhZSJ9; XSRF-TOKEN=eyJpdiI6Im02XC9PalFtOXJTMzlhTUdnKzRRXC9hUT09IiwidmFsdWUiOiJud1BHXC9vNm9KSk9iamNXXC9pVlhEMG1ZUWdwUkpIK2p2c1RvYkVOQXRmV0t4eDJIUDFsZXJaaVFBM1pKTlZqMHhyWEhJMFFraldQRG9adDJ6YTdRZ0QyOEIwMXdMdnhCQncweHI0WXZQSkhFbUpaRHFONmg3Q1k5dkJEOXZqdkVVIiwibWFjIjoiYzVlZDM0NzE4ZTcyZDBjMDZhYWU1NTNhYjE4YzZkOGRiZWZiYjFiYTQzZDRhOGNmYWE0MzQ4ODg5OWM1ZWM4MyJ9; PublishedSiteSession=eyJpdiI6InVsRVNCaWU2OWN0UzVcL05oY0tsTGtBPT0iLCJ2YWx1ZSI6IkVUcWwzYlhrWDczczdZNVM5VnZsMnRNMlhmbERBNkJSQlR4YjBxMW5UV1dQXC9XZHg0ckVlRmJwd1FCTWl0UW1IS0lLMXU1RmdGaVlQNU9jbHhjcjRRWWNpNFNFZkxTa0lIOGNmVXBRRkZPeWkwcGhXUFpQOWpqUkprSmJ2ckNrbCIsIm1hYyI6IjQ3NTM0MTAxMGViMmJjYmExMTkzY2QwYmI4Yjc4Y2E2YzJhZjEyMmQyYWI5YzZjOWMxNDdkMTc3MjNmOGRkYWMifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Mon, 26 Dec 2022 19:09:53 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:53 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; expires=Mon, 09-Jan-2023 19:09:53 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; expires=Mon, 09-Jan-2023 19:09:53 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu56.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: 0b955a9f22910313957d616233bdb2f1

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=896becc9-4900-4503-9d65-41e639f1e564&batch_time=1672081789209

3.233.155.139

202 Accepted

53 B

URL HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=896becc9-4900-4503-9d65-41e639f1e564&batch_time=1672081789209
IP
3.233.155.139:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
a05d5f69567708246791bf596a3dcf29
4b819fe0f802ac97292dbf9643dec1f625c76458
0285d7e8fd09f00142e47ade343a14eb71e31576f4173bb18134e834780da2dd

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=896becc9-4900-4503-9d65-41e639f1e564&batch_time=1672081789209 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15974
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/40846.a57e3a8ee8e6235cd269.js

151.101.129.46

200 OK

3.9 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/40846.a57e3a8ee8e6235cd269.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (10135)
Size
3.9 kB (3900 bytes)
Hash
4d5cf35f7af8bfb5855046d65613fdee
417edcc5f6806145e469e623640b80d78e4808e6
8ae35387968d088b0cc9c2c264f236a366b0d7cbf6134450acf18286048a4a4d

HTTP Headers

GET /app/website/js/40846.a57e3a8ee8e6235cd269.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:17 GMT
x-rgw-object-type: Normal
etag: W/"630e018251d928d196cae2e328d36580"
x-amz-request-id: tx000000000000020d04606-006356f890-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/40846.a57e3a8ee8e6235cd269.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 816ece5f6932666fedb5f058fa3c5c7398fbad59
x-request-id: e398ee3234afd0beaa5bbf3a1cedd7bc
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2227255
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.239307,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3900
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js

151.101.129.46

200 OK

12 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (15468)
Size
12 kB (12355 bytes)
Hash
fbd8628ccf6b593936cb1ef094a5b011
feb9623af2021175e7b031bc0f6f258f8e4e7ee2
0a59c6c168da08747c73c7e780f368887dca1339c929ac2566da3f7f6af4eb86

HTTP Headers

GET /app/website/js/navigation-mobile.b5da6fb73e254aa8d983.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:42 GMT
x-rgw-object-type: Normal
etag: W/"37111ca05ad9136805e13122b23d86ca"
x-amz-request-id: tx00000000000004becef7a-0063a1dc25-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.b5da6fb73e254aa8d983.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 593b57f53ed43b939699dc586b36921e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.244609,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12355
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/63481.2c08ab74c1e39b2c8681.js

151.101.129.46

200 OK

6.5 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/63481.2c08ab74c1e39b2c8681.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5953)
Size
6.5 kB (6526 bytes)
Hash
8b329e60fe56981f03e096a3b62b44bf
6b114f8c4358750d6a0b48b54fb048a6df3d6831
9226054b2ee67a847d7a79448cdffc598102f79c19a12f2a38a24ae1df443c52

HTTP Headers

GET /app/website/js/63481.2c08ab74c1e39b2c8681.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 15 Dec 2022 18:43:12 GMT
x-rgw-object-type: Normal
etag: W/"a1ce9b1d02fed3fb7daeebd5438fe249"
x-amz-request-id: tx000000000000049777a45-00639b6b61-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63481.2c08ab74c1e39b2c8681.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f28619c22d756f5ea4206bf323ec8cd75f02f502
x-request-id: cc19d3d4aa9a1572de59c882044f95fa
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 951708
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.244640,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6526
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/89814.34c178d44259563f7567.js

151.101.129.46

200 OK

4.6 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/89814.34c178d44259563f7567.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (14754)
Size
4.6 kB (4639 bytes)
Hash
f18feb282a86d3b9406341cf119cd92a
e8890c30eec0df9a5501e478cc0ae6f1cd97bcad
c4f45f34acc47f3fe4eb57fc37ce3bace6b027f9d55d83908473e289386b5acf

HTTP Headers

GET /app/website/js/89814.34c178d44259563f7567.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Dec 2022 19:39:13 GMT
x-rgw-object-type: Normal
etag: W/"60cbce4947954462906cf7eee4d79fdc"
x-amz-request-id: tx00000000000004a4e1f2b-00639cc9d1-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.34c178d44259563f7567.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6ce0983f7341d24103fdccd0a09bf8f09ae88c22
x-request-id: 2d9a293c7027719acc0e3fd58a6a79f8
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 862030
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.247950,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4639
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/46150.a2c0ee2f099a694f4b93.css

151.101.129.46

200 OK

5.3 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/46150.a2c0ee2f099a694f4b93.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (21222), with no line terminators
Size
5.3 kB (5335 bytes)
Hash
d87098273ea05d81f06a7851027171a1
d155cd8f3f8ec583a945a0607580a3f46d5180c3
8225b8622d53e375e74bd3e7e0f166b2ac5fedf60b196d96462769724ef3c697

HTTP Headers

GET /app/website/css/46150.a2c0ee2f099a694f4b93.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:38 GMT
x-rgw-object-type: Normal
etag: W/"b3cee5289aa6f23274baaed5fc19c1e8"
x-amz-request-id: tx00000000000004ce4d55c-0063a1dc24-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 09c6c0102a7ad43c8a906362620a576d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1672081793.249088,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5335
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/46150.06c1006bd234778ad196.js

151.101.129.46

200 OK

5.6 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/46150.06c1006bd234778ad196.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (13481)
Size
5.6 kB (5594 bytes)
Hash
155945af572d70de29a537d7e1dc95b9
dafce42deb24307f3fd03ddc4c594f442be60f7e
fae84aea6f01258f8f4c245c044f0def1722e3f049f4472ad9854c0fb1dc7be8

HTTP Headers

GET /app/website/js/46150.06c1006bd234778ad196.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"b12872b2af2d4a38e26e7173a902b2a4"
x-amz-request-id: tx00000000000004d47ae77-0063a1dc23-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/46150.06c1006bd234778ad196.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a979950f571f20c31c693dc4002453f29734a10
x-request-id: f0702a76f9a7b792f0a195cbcbd8deca
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.249621,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5594
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/navigation-mobile.184cb4fc0af1666b5f0d.css

151.101.129.46

200 OK

5.5 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/navigation-mobile.184cb4fc0af1666b5f0d.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (20582), with no line terminators
Size
5.5 kB (5452 bytes)
Hash
58dd30eb521c6d3841b3f89ace5fec5a
87a9a0c7ec41c8fe749e719058fded4694115750
aaee24f8ef3b33d679baae7a9612704b97a99001e7ed73a5123767e9eb11cbce

HTTP Headers

GET /app/website/css/navigation-mobile.184cb4fc0af1666b5f0d.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 16 Dec 2022 19:39:11 GMT
x-rgw-object-type: Normal
etag: W/"6b2f367fd8c2455d5c3e4d2e6214b3ae"
x-amz-request-id: tx00000000000004e8e1ede-0063a44656-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a4cbc36ef6c21ee707dd9bae049d5419429a328
x-request-id: 7e896c011d0a1088458f936f88426cdf
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 371498
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.244614,VS0,VE6
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5452
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/78084.8d43a7cab6170d6b418c.js

151.101.129.46

200 OK

5.4 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/78084.8d43a7cab6170d6b418c.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (13895)
Size
5.4 kB (5384 bytes)
Hash
34a4576fc55fc710ff69cee4df862635
d2d4aeba9a7de33e131235d7baccc2563c36c699
fa518a7f4e3d79761186d885016ad94c787570eaa129f0eb53695fbc862ec9a3

HTTP Headers

GET /app/website/js/78084.8d43a7cab6170d6b418c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"fc09495134e054c9d27232bbafb29904"
x-amz-request-id: tx00000000000004becf05a-0063a1dc26-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/78084.8d43a7cab6170d6b418c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: a3785aa6a011929d96351a342e08cc36
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.250324,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5384
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/73781.4fcf0dae3a53d0b09f0c.js

151.101.129.46

200 OK

18 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/73781.4fcf0dae3a53d0b09f0c.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (44746)
Size
18 kB (18256 bytes)
Hash
40ed07394bb153d22af57a87a092dcb0
e9db01623a996d3da347ba90c5fa8edf2d41cd43
ded6799ed1a5e2c5f9c5763c957a60eb56d3869e7d04960f17794ec9368907d9

HTTP Headers

GET /app/website/js/73781.4fcf0dae3a53d0b09f0c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"2722e8629ff97196c86c1e613d14c00d"
x-amz-request-id: tx00000000000004cf40662-0063a1dc24-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/73781.4fcf0dae3a53d0b09f0c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: fde058f27909efb2d30c7aca703ade3e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.251212,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 18256
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/78918.23fa48c78bc95517d94d.js

151.101.129.46

200 OK

4.5 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/78918.23fa48c78bc95517d94d.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7585)
Size
4.5 kB (4506 bytes)
Hash
16e40ae460f585ef271389187acfe94f
972067eadc19b02619d9fb1bec6a6d8f60c37b7f
1aaef55944f668600a8bdd23c6535f4a2f06dd31d0857c99c0220c042c38390f

HTTP Headers

GET /app/website/js/78918.23fa48c78bc95517d94d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"f5b176da6835b7692a686489583ab238"
x-amz-request-id: tx00000000000004d08890a-0063a1dc25-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/78918.23fa48c78bc95517d94d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a979950f571f20c31c693dc4002453f29734a10
x-request-id: 73b4f33e9aa3ab91f3dbbf120361a8c9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258048,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4506
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js

151.101.129.46

200 OK

3.4 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3720)
Size
3.4 kB (3359 bytes)
Hash
b05305d9df1b56994e7045dacc0242b5
9d5bcc531c42ae3ddc8fcd23e23a301bdcfc89a5
69da22dbd327ec00f4292829294c53deb1750afda3b236aff4381a69d6999003

HTTP Headers

GET /app/website/js/11562.08b50449ae7a3f4b6257.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"b0eb0e08db2b8d54e1da1bfa5020e5a9"
x-amz-request-id: tx00000000000004e7e276b-0063a4c220-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/11562.08b50449ae7a3f4b6257.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 8a9efa69ec67ad6ba2cdae0385285e03
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 339669
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258152,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3359
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/cart-1.a6f313b0bd0f438f1886.css

151.101.129.46

200 OK

7.2 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/cart-1.a6f313b0bd0f438f1886.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (26506), with no line terminators
Size
7.2 kB (7175 bytes)
Hash
492158a1598b739805035e99105f7eb0
0433ec0d5676daeba657355148f3b28e18936797
2a67911d6f9f13c76635767eb84029acda9b0f868d186d6f4f8912f022e31c5f

HTTP Headers

GET /app/website/css/cart-1.a6f313b0bd0f438f1886.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:38 GMT
x-rgw-object-type: Normal
etag: W/"9381903a66ae6cf605072ddb7bea83fa"
x-amz-request-id: tx00000000000004d47b7ac-0063a1dc2f-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: b9945cb06db85ed41b9246b3e6db7115
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258229,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7175
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/cart-1.fc9732e410856275e19c.js

151.101.129.46

200 OK

35 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/cart-1.fc9732e410856275e19c.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (12954)
Size
35 kB (34601 bytes)
Hash
1630582ced72a10672374fd441f3377c
51a806d0751de7e4d171dd6d5cec6559f4740d5d
29a343e53aa8107f115077087d1f0c8c7115d43d1a18030f9c780a235dd9b3d4

HTTP Headers

GET /app/website/js/cart-1.fc9732e410856275e19c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:41 GMT
x-rgw-object-type: Normal
etag: W/"bc93951124909c6bc6dabd102a317a18"
x-amz-request-id: tx00000000000004d47b0da-0063a1dc26-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.fc9732e410856275e19c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: ae20b84290b202b06f4835798d927eea
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.258756,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34601
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/15368.6709a9067ca6c5d156bf.js

151.101.129.46

200 OK

8.6 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/15368.6709a9067ca6c5d156bf.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (21162)
Size
8.6 kB (8585 bytes)
Hash
92ddd882f9d100422e341567c1d7fe80
016ec4fa2f903bf9422485b3a73a1e86fa720374
e7fee200cfa5573482c1b8d6216974dbeb39dd4b839a8a54465e658f900143e9

HTTP Headers

GET /app/website/js/15368.6709a9067ca6c5d156bf.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"7c6b90d0260105cd712467cff1b7b8e0"
x-amz-request-id: tx00000000000004d088df5-0063a1dc2b-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/15368.6709a9067ca6c5d156bf.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 1a86a3232974b0f4bfb50e87bf996cb4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.269352,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8585
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/97167.89a6bbf7a1fa16f311bb.js

151.101.129.46

200 OK

8.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/97167.89a6bbf7a1fa16f311bb.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (17943)
Size
8.0 kB (7988 bytes)
Hash
f8b9c38d83b97bfac603ed3b44a96cc6
30a29a29fadfc941281fa9e1fd11aa930ae6d325
c2d21656128051639e0d3763350c414363214ac22ecce3d807c82178e4dcb667

HTTP Headers

GET /app/website/js/97167.89a6bbf7a1fa16f311bb.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Dec 2022 17:43:46 GMT
x-rgw-object-type: Normal
etag: W/"02073d22599e8cf4dd202d26113a8439"
x-amz-request-id: tx00000000000004b7226bd-0063a0a363-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/97167.89a6bbf7a1fa16f311bb.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 61e5d5675664de05b2475456ac8af837f62daad6
x-request-id: 4cb97fcf48a7f8f726fcd317414e5b2f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 609709
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.270642,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7988
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/header-4.5dfd76774341bbc6d516.css

151.101.129.46

200 OK

6.3 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/header-4.5dfd76774341bbc6d516.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (23937), with no line terminators
Size
6.3 kB (6251 bytes)
Hash
86eb983a4b9b64ae2817bd0cc7302451
ffaa9a1b58351b5b2032044869bcc3657715bb29
a311744a76b85da047ab1eedc7d48cc7302dbe8a53033232f56c50decb29472e

HTTP Headers

GET /app/website/css/header-4.5dfd76774341bbc6d516.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"c6c31122fc6a1959470b13e6fd72f724"
x-amz-request-id: tx00000000000004e7e127e-0063a4c1fe-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 859e405960d198ac4ed1a96621f8a6ee
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 339669
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.272317,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6251
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/15259.402801be5fca5ae67012.js

151.101.129.46

200 OK

1.8 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/15259.402801be5fca5ae67012.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4114)
Size
1.8 kB (1811 bytes)
Hash
62dd5821ecf55f387f235b5a781383d1
376eb42416e9611992843a56e045b243e3f4b0e5
ddb88d175fd2a97358a46dea9ac2647ca9711c40a022b0c371b3f612c61c103c

HTTP Headers

GET /app/website/js/15259.402801be5fca5ae67012.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Nov 2022 21:38:49 GMT
x-rgw-object-type: Normal
etag: W/"8e8012f51a76c3a9875803c77a5ad66f"
x-amz-request-id: tx00000000000003d4822ee-0063867c53-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/15259.402801be5fca5ae67012.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 816ece5f6932666fedb5f058fa3c5c7398fbad59
x-request-id: 91e6874ed5232d867b34674a41edb064
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2227255
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.300540,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1811
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/12101.f98ef4383ce2f9f845ea.js

151.101.129.46

200 OK

10 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/12101.f98ef4383ce2f9f845ea.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (12284)
Size
10 kB (10022 bytes)
Hash
7bdf1cf503178b75d23dd20689feeee6
ba39b040e71527912012503b31571614fb998508
04e9b751a7cb181f3bf9b0942816cca3b77c19d4b5505e4668e01f299b9f2b31

HTTP Headers

GET /app/website/js/12101.f98ef4383ce2f9f845ea.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"215dd130f575ff8f69721a3d62ca74fa"
x-amz-request-id: tx00000000000004c20a82a-0063a1dc32-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/12101.f98ef4383ce2f9f845ea.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: f7c4225c0ba66030c3e64913d4f02e1c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.300899,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10022
X-Firefox-Spdy: h2

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.232.197.188

200 OK

2 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.232.197.188:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 2434
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 26 Dec 2023 19:09:53 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/12101.3c720822dca69faf7ab1.css

151.101.129.46

200 OK

4.4 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/12101.3c720822dca69faf7ab1.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (18788), with no line terminators
Size
4.4 kB (4366 bytes)
Hash
cdc8871e0839e342cd5f87ffc2d8b921
b1b49eeb787dcc5de6bb3bd5ffd51f6a57780bc4
9a10a0e68cec1c9ce5ae80722cd2b66dd66efc6a1658872ba3b94d0219fee633

HTTP Headers

GET /app/website/css/12101.3c720822dca69faf7ab1.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 16 Dec 2022 19:39:10 GMT
x-rgw-object-type: Normal
etag: W/"737503780e39d7995d228d4b7b11e804"
x-amz-request-id: tx00000000000004c469460-0063a0a34b-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5351b019a7ba0ccf0470e3b03c194572d9b46fe7
x-request-id: 2efde9c4b4156caa6441193cb264598e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.300736,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4366
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js

151.101.129.46

200 OK

13 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (14371)
Size
13 kB (12941 bytes)
Hash
96e92269cc99556031fabc9e73733461
ff9ac5aa57bdd80b86c52d29b4738edbf46af7de
14bfa005a0baa49d32ca485037f87619d0ed448b09af1d2f9332af9bc21da270

HTTP Headers

GET /app/website/js/86433.0cf032f4de4b0c36930a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2022 20:02:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca6ec9c9ed1cfaf0a675d812cfc850c"
x-amz-request-id: tx0000000000000436b0bea-006390f1ae-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/86433.0cf032f4de4b0c36930a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5e3315cbb523c8811c17b27b3be58f9ac0f56b67
x-request-id: 4a72a30d88d5cb54f4b7d771bf631184
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1638262
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.301169,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12941
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css

151.101.129.46

200 OK

1.7 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5436), with no line terminators
Size
1.7 kB (1736 bytes)
Hash
3cd007ca346955ac0cba245458d27fb5
f5be00f74f36e2505a9217a70ffa58dddfb2294f
79c6922ca7e2ccf7968b3df8df9307da91ed8f73e0f33eb4743f862d39b344c4

HTTP Headers

GET /app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 01 Dec 2022 17:05:38 GMT
x-rgw-object-type: Normal
etag: W/"294b38fa4e234ab8a0094f0c9b417538"
x-amz-request-id: tx00000000000003e931211-006388df64-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e2a949e98eba277d0907a1fb5e29a7ee7b054640
x-request-id: 12b7fd1ec58f28d3e9bd716ffd273d15
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2167153
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.302059,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1736
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/65125.8a5e3ab270e0ed869187.js

151.101.129.46

200 OK

6.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/65125.8a5e3ab270e0ed869187.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (6042)
Size
6.0 kB (5993 bytes)
Hash
8aa797358c17e8a88789b8b6c54aa8f7
385283fc2c904334f42232eedae89c1b7ef5fc1e
0dec8a1a6dfb6399031e8dce920f1ad4ba32a25ba2eecde58e4ad041df170133

HTTP Headers

GET /app/website/js/65125.8a5e3ab270e0ed869187.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 09 Nov 2022 19:52:55 GMT
x-rgw-object-type: Normal
etag: W/"a26f548e123aa35a8f80109396fe1d88"
x-amz-request-id: tx00000000000003c433071-0063867c74-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/65125.8a5e3ab270e0ed869187.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d3bfc3a9eea8d709f5cc8d078458489ccb39c0a3
x-request-id: 8bda8240de6bb04e7185ec63eb53a430
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 2323611
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.301148,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5993
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js

151.101.129.46

200 OK

791 B

URL HTTP/2
cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1638)
Size
791 B (791 bytes)
Hash
2d80e865f1df71512989f924d9ab5d3d
9e22b7838107f1acef9a37f275a6b06d3095e74e
9be7dd653b0a42289e2c949d4bb0a1011d78f8b777af26538343baa9d204ccd1

HTTP Headers

GET /app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:18 GMT
x-rgw-object-type: Normal
etag: W/"9ce8c2632e7b61c895e304a0bbbb31d0"
x-amz-request-id: tx000000000000020dd10ff-006356f8ae-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/contact-us-1.d29a1c0719d9da0dc41f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b71ae12a0ae22ce8f9c838c55a8daf2fe3e2d773
x-request-id: 3c5ae2024712fa737b9e7eae5191c10c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 3437595
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.303539,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 791
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/9918.aa3a83972188e468933f.js

151.101.129.46

200 OK

12 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/9918.aa3a83972188e468933f.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11873)
Size
12 kB (11638 bytes)
Hash
335165910c8b27e5aa9f837526f670d9
06e1c022c08058d95448aad69b0ad70a300f607c
cc14d67379adabdccf8967ca5032dc361e30d21f4baec4e15bc6ba44f39047ff

HTTP Headers

GET /app/website/js/9918.aa3a83972188e468933f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 15 Dec 2022 16:36:11 GMT
x-rgw-object-type: Normal
etag: W/"ef72cfa0c3b1f18d342b956bf10d3108"
x-amz-request-id: tx000000000000049810d73-00639b4d74-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9918.aa3a83972188e468933f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a800fb6c89fe892fee129e762f5e9f1187eece86
x-request-id: c423a91d1eb502eff847f01b8d717afe
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 959399
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.303877,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11638
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js

151.101.129.46

200 OK

6.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11924)
Size
6.0 kB (6018 bytes)
Hash
8ad847b73830f3ede30562fd222bf746
44e0dba76769e0b427fafe49550250b3691ce965
0de272e980f4373cd645be5e53de24d301c86cd37c0499339930accc46b12f92

HTTP Headers

GET /app/website/js/95283.44172b5777108b073121.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"563306feb4cf49a99e43e8c44d36578a"
x-amz-request-id: tx00000000000004d47b380-0063a1dc29-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/95283.44172b5777108b073121.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a979950f571f20c31c693dc4002453f29734a10
x-request-id: 0475bf190bb36c85b3bb926a3f53dbe6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 529683
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.303685,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6018
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/footer-5.9c832c68ad8d8dd06301.css

151.101.129.46

200 OK

3.6 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/footer-5.9c832c68ad8d8dd06301.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (12874), with no line terminators
Size
3.6 kB (3625 bytes)
Hash
5ea90f2e954541b4dc9df05e00417a54
dca2ebfdd1df5ec4c273d7aec3f1ed457b9f16b9
9e4f235557c3b4b11dfc9af07e076bb3371a31e1aaf5a8c190a8eafc3cfeac2d

HTTP Headers

GET /app/website/css/footer-5.9c832c68ad8d8dd06301.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 15 Dec 2022 18:43:11 GMT
x-rgw-object-type: Normal
etag: W/"a540d6d50d0f8424ee1218a994342c52"
x-amz-request-id: tx000000000000049da8b48-00639b6b69-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f28619c22d756f5ea4206bf323ec8cd75f02f502
x-request-id: fa0c894898777b6f3ddddc55293e14f4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 950757
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.304150,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3625
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2

151.101.129.46

200 OK

17 kB

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "e43b535855a4ae53bd5b07a6eeb3bf67"
x-amz-request-id: tx00000000000003bf1a569-00631ec950-bfe27ea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 09db0b9815d1fe8dac449ecc2a7da2c932739637
x-request-id: de26db3a36ac7c76bffc24043f517b41
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 4034007
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.377725,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16740
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2

151.101.129.46

200 OK

17 kB

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 16756, version 1.0\012- data
Size
17 kB (16756 bytes)
Hash
603c99275486a11982874425a0bc0dd1
ffeb62d105d2893d323574407b459fbae8cc90a6
4ffc35ac4d5e3f1546a4c1a879f425f090ff3336e0fce31a39ae4973b5e8c127

HTTP Headers

GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "603c99275486a11982874425a0bc0dd1"
x-amz-request-id: tx00000000000003ab80373-00638259a5-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: 0872297ad9202d270c2cfafe3af4bd23
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1790195
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.377554,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16756
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Domine/domine-v19-latin-regular.woff2

151.101.129.46

200 OK

17 kB

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Domine/domine-v19-latin-regular.woff2
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 17076, version 1.0\012- data
Size
17 kB (17076 bytes)
Hash
4d198f02e6372e6be2d640e3355d8c2f
888efc2898071341849da009080aafb69879ec3c
e8dbb6559bded8cd912b4ea84b3c4462ed06c656f9e23ba957f126fdc366995f

HTTP Headers

GET /app/website/static/fonts/Domine/domine-v19-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: "4d198f02e6372e6be2d640e3355d8c2f"
x-amz-request-id: tx00000000000002c23920c-006369a35d-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 54ba3e5f2029232dfc83f286c3e101298370221d
x-request-id: e384a08d27ac93cb832b0f58600fcbdb
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 4214308
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.379169,VS0,VE5
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17076
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css

151.101.129.46

200 OK

351 B

URL HTTP/2
cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (626), with no line terminators
Size
351 B (351 bytes)
Hash
ee20922f55875dd45d7acae546cadedc
491672dcd84153d29c9e2346e0f78d1fef5e729d
6594eb11c5c147a510920933dbd3177b6678ce61f0bdc38a6377761534792336

HTTP Headers

GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000000000003106c3ab-006372be75-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dc3e8c554bdd1a0853a3631849a999d1346b5f4d
x-request-id: 72cbe81acfb270119614b8c0a550566a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 3599405
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.497668,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 351
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/free-footer.15aead6eeba7d5c05788.js

151.101.129.46

200 OK

3.2 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/free-footer.15aead6eeba7d5c05788.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7460)
Size
3.2 kB (3226 bytes)
Hash
76d8ec5e01e8b74adae27eaaf5cde45d
23af3dbc6657ff5fb675609bfe6a39386fa72b1e
6daa6563cd9c314a08051e8cb9dbc226ca59bd3a44df3bba650f474783cf8804

HTTP Headers

GET /app/website/js/free-footer.15aead6eeba7d5c05788.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 17 Nov 2022 16:52:48 GMT
x-rgw-object-type: Normal
etag: W/"4bf2d5346ca6cfcf2337aeea4e0f43ff"
x-amz-request-id: tx00000000000003c518db2-0063865978-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.15aead6eeba7d5c05788.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: f359eeb7885bee873096734601f27b5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1790195
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081794.501521,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3226
X-Firefox-Spdy: h2

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.232.197.188

200 OK

2 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.232.197.188:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1892
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 26 Dec 2023 19:09:53 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=59117af9-f302-4e64-a525-5c9b77d7986d&batch_time=1672081790001

3.233.155.139

202 Accepted

53 B

URL HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=59117af9-f302-4e64-a525-5c9b77d7986d&batch_time=1672081790001
IP
3.233.155.139:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
8cb07e5a79ef33339871808bde239ac6
39506d40b983471c9ce526ff768a9762ce7f135e
18e67702315f08fa161933dc870eec1f5c649e100ce97014cf5ff3b6395ea2a5

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=59117af9-f302-4e64-a525-5c9b77d7986d&batch_time=1672081790001 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 16266
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
date: Mon, 26 Dec 2022 19:09:53 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]

199.34.228.39

200 OK

79 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
79 B (79 bytes)
Hash
26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9
Content-Length: 77
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081790.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:53 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn134.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]

199.34.228.39

200 OK

182 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
182 B (182 bytes)
Hash
6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9
Content-Length: 89
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081790.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 19:09:53 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu78.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

btconnect-109798.square.site/app/website/square.ico

199.34.228.39

200 OK

6.5 kB

URL HTTP/1.1
btconnect-109798.square.site/app/website/square.ico
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
6.5 kB (6518 bytes)
Hash
d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /app/website/square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1672081790.1654494730.20be4e4f-2ff3-41e3-9e0e-b104c0b393fb; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IjA2ZGs2aGFOdGpIcmVFN3FsUUJHY1E9PSIsInZhbHVlIjoidVpJZU9CMXJ0WnRhb0hMM1l3c3VPcHZVUE1BUEV1dGlHYnU5cW1cL0ppM3BwNlpaOTNNUjI3MkMzYmJjTEJ3Sm5WZXJ4bVRycThrelwvUVgwcytsMEJGZzhMMms3aW5NbHVqQ0FkTUhHNjIyb0I2N3grTWhWTHMrdEZaRWo0UFREYSIsIm1hYyI6IjU4ZTgxNmYzZWFkNTFkNTZlMWQzZTZjZDZjMmRiOWZmNGZkNjFhYjJlNGRkOWM2ZjM4ZDZhYzQ0MzBkYWQ0NjUifQ%3D%3D; XSRF-TOKEN=eyJpdiI6InZCZUVTWUdmXC9xdUFxK0NkbHMzcFh3PT0iLCJ2YWx1ZSI6Im9qXC8xbkNyYzZPcGtwSzR6UTNqVSsxdkJmZTdCTG1sM3ZnaGRmc3lTK0ZRVnpzXC9mbGJqOHIwdFhJd3NrcUlyaXNZMisyQVpvcnNDSlwvd0N2VFNRakVLY1piZm9xazVsaWhSZkt6N3hUNTVneFZBRTN6ckFvSG1vd01BSkZnWmlRIiwibWFjIjoiZTg2ZDkwMGM2YTZiYTE4MjUzYTExMmM2NDU2NTUzODI2ODQyYTljNGI0YmEzODUzMjBhNzgxNGIxNjg4ODE5ZiJ9; PublishedSiteSession=eyJpdiI6ImpVNHZRMmtDMEV0TU9peFNcL2dlWDFBPT0iLCJ2YWx1ZSI6InR5bWZtazFIeVZ6bkJrd2xaV1JGazBqVFMyZm9YK1doNkxKbjNiZmNUdzBmcjJZbEVYV1lyZUtqdEh1WjY3ejFiSnZsVHVycnpOWDdhSE53aHB5ekI2MFZCUUlIdVgrc24wdUY1Rm1EbUtzc3dZSEUzclBEWExERndcLzQ4NUhPNCIsIm1hYyI6ImNkZjgyN2NjZWI5MmQzYjc3ZTdiODdjM2E0ZjMyMDZmNDUxYmJhNTgzYjY4N2U0N2U1ODJlMTY3YjI5MGRmNTQifQ%3D%3D; _snow_ses.f9a2=*; _dd_s=rum=1&id=adb8d098-1695-4840-958a-d5198439098b&created=1672081788304&expire=1672082688305; websitespring-xsrf=eyJpdiI6Ild0XC9ReDdtdlNXUCtucHNJSGdJU2lRPT0iLCJ2YWx1ZSI6Ikd3XC81eDBIc0phRTllMHQrRlBmOGdBa0ZGdmF3MXBvbUwzNGUzU25xSFowVEVoalZ3Sm93VkdSTnIwRkVnbXRwRlwvSjVYUjFoRUtSWWtuaTBxNWdSZzRUMmhoTFk3S3FpK2NuRmZVOFBcL3kydElHS0dGNjd6MGVnNWowTU9jd2FZIiwibWFjIjoiZjA5OWQzOTVkMWYzOTMzMjIyNWI1MDcyMTBjN2Y4ZjUwY2E3YWQwYzdiMzAwZjY1NzQ0Y2RhNzNkNDI0MWY1MiJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Dec 2022 19:09:54 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a88764-00628473fc-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn65.sf2p.intern.weebly.net
X-Revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
X-Request-ID: e53cc1fdf1b0aeb696aba6ea4fa09b58

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9295de61-30c5-4b99-8826-cb3a0b8e3370&batch_time=1672081790519

3.233.155.139

202 Accepted

53 B

URL HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9295de61-30c5-4b99-8826-cb3a0b8e3370&batch_time=1672081790519
IP
3.233.155.139:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
e9c598ee0ca9dc55eef583b99a1703a9
296d9896e8d774af9d8be15adb053d18e43ce5c2
a97e815714992cda6d01ff7cfb3c6b5235b7eb4392c1f824d0ec56ea97b389f6

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8e84738&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9295de61-30c5-4b99-8826-cb3a0b8e3370&batch_time=1672081790519 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15922
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
date: Mon, 26 Dec 2022 19:09:54 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/footer-5.7305d26a62bb3de50d96.js

151.101.129.46

200 OK

0 B

URL HTTP/2
cdn3.editmysite.com/app/website/js/footer-5.7305d26a62bb3de50d96.js
IP
151.101.129.46:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/website/js/footer-5.7305d26a62bb3de50d96.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:19 GMT
x-rgw-object-type: Normal
etag: W/"633437cf47ec43a8de466a2f1765b18b"
x-amz-request-id: tx000000000000020dd0cd3-006356f8a9-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-5.7305d26a62bb3de50d96.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: 74c725ffd0d360ec86a917007a845996
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 26 Dec 2022 19:09:53 GMT
via: 1.1 varnish
age: 1782393
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1672081793.304092,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1322
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations