sales-paymentconfirmation-document.weebly.com/
199.34.228.53200 OK 6.5 kB URL User Request GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/
IP 199.34.228.53:443
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2260), with CRLF, LF line terminators
Hash 589d4cee466226a9c512409d85c7378b
7b4dab29bfaf3749f8dbfe0a2786d5875061b16c
1dbe6034f68c2870477d1057245fad848d0c2beaad97de68a1515e39e3783963
Analyzer Verdict Alert OpenPhish phishing Office365
GET / HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Nov 2023 13:06:42 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=sales-paymentconfirmation-document.weebly.com
language=en; expires=Mon, 11-Dec-2023 13:06:42 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"589d4cee466226a9c512409d85c7378b-gzip"
Content-Encoding: gzip
X-Host: blu150.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 6513
Keep-Alive: timeout=10, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/css/old/fancybox.css?1681838959
151.101.193.46200 OK 1.2 kB URL GET HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1681838959
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (3910)
Hash 1dcebbb5a1eb8b028310ceeb72a339b3
e254b7a35ac189fd1ce9cf8bd78593bebfe27d7d
865cb87de9fc4d6530edce21f0103107abae6abe45cabdff2ad9af067b3d8e0a
GET /css/old/fancybox.css?1681838959 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 13 Nov 2023 22:44:48 GMT
etag: "6552a6e0-f47"
expires: Tue, 28 Nov 2023 13:52:57 GMT
cache-control: max-age=1209600
x-host: blu49.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 1120425
x-served-by: cache-sjc10029-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 206, 1
x-timer: S1701090403.778944,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Cookie/font.css?2
151.101.193.46200 OK 241 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Cookie/font.css?2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
Hash db8af23f67fcc5efb5b776596101953d
eaace85d13b0ae8fb76543d55c89177a8dfde457
b7a4acb366b2f8f8d8254e1a4279f5567b530c194b676f0bb9a7aaa1d3dc4995
GET /fonts/Cookie/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 17 Nov 2023 16:01:15 GMT
etag: "65578e4b-1ad"
expires: Wed, 06 Dec 2023 07:35:37 GMT
cache-control: max-age=1209600
x-host: blu68.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 451866
x-served-by: cache-sjc1000124-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 69, 10
x-timer: S1701090403.782137,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 241
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
151.101.193.46200 OK 34 kB URL GET HTTP/2 cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65483)
Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7
06e872300088b9ba8a08427d28ed0efcdf9c6ff5
61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Nov 2023 16:10:11 GMT
etag: "65539be3-16dc4"
expires: Tue, 28 Nov 2023 23:08:15 GMT
cache-control: max-age=1209600
x-host: blu51.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 1087107
x-served-by: cache-sjc10032-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 9392
x-timer: S1701090403.782484,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1700694718
151.101.193.46200 OK 1.4 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1700694718
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (3600), with no line terminators
Hash 40b81b2d52ba9d2e2c64c31ff6a24cd7
6b5689250661646ecbb841f2475f1556a113373c
e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96
GET /js/site/footerSignup.js?buildTime=1700694718 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 22 Nov 2023 22:54:32 GMT
etag: "655e86a8-e10"
expires: Wed, 06 Dec 2023 23:14:00 GMT
cache-control: max-age=1209600
x-host: blu138.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 395562
x-served-by: cache-sjc1000092-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 53, 905
x-timer: S1701090403.784131,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Lato/font.css?2
151.101.193.46200 OK 365 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Lato/font.css?2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
Hash 8748eec74f3e1353ff5d59c4fc793928
5c585058ebe43354156e0c7f1c40937128804fa7
cb2642e037c6e74eace100541b7e6776ecaf14371b49e4decf7831bfb0a7147b
GET /fonts/Lato/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 13 Nov 2023 22:41:07 GMT
etag: "6552a603-a0c"
expires: Tue, 28 Nov 2023 11:01:00 GMT
cache-control: max-age=1209600
x-host: grn41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 1130741
x-served-by: cache-sjc1000096-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 7, 2002
x-timer: S1701090403.788060,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 365
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Montserrat/font.css?2
151.101.193.46200 OK 276 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Montserrat/font.css?2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
Hash 91b360ae11a20a31e6a9ca60c6f6c691
ec3c5c553a20655c54b0a5577a15abe576efa9b1
cf91769ae11889ad46b8090d0d4d58a4621f2bcea35d1d8d96ea5e38ba34ee73
GET /fonts/Montserrat/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 14 Nov 2023 16:06:39 GMT
etag: "65539b0f-354"
expires: Wed, 29 Nov 2023 09:08:45 GMT
cache-control: max-age=1209600
x-host: blu99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 1051077
x-served-by: cache-sjc1000108-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 41, 3480
x-timer: S1701090403.788079,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 276
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Lora/font.css?2
151.101.193.46200 OK 321 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Lora/font.css?2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
Hash 428a6a35ff81f3f17d516e447cbfa606
73b876668c417277423edd1b2e1f70275f73dad3
69822a307cb14d50cb0b33dacd3ca2b281aa05ee910af0a2a969a60ab055f1aa
GET /fonts/Lora/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 13 Nov 2023 22:41:07 GMT
etag: "6552a603-6aa"
expires: Tue, 28 Nov 2023 11:41:34 GMT
cache-control: max-age=1209600
x-host: grn47.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 1128309
x-served-by: cache-sjc1000110-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 327, 722
x-timer: S1701090403.789780,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 321
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1681838959
151.101.193.46200 OK 146 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1681838959
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (32147)
Size 146 kB (146401 bytes)
Hash 0de029f7ed3fd4cbfdcef31b834138e3
224512b5c840e885cd0732822af53301681ec799
593fec175b00a1f118f77bb8ed378e857e9f1225f0fc019fcea508b27da53cf0
GET /js/site/main.js?buildTime=1681838959 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Nov 2023 16:10:49 GMT
etag: "65539c09-74804"
expires: Tue, 28 Nov 2023 17:52:47 GMT
cache-control: max-age=1209600
x-host: blu26.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 1106035
x-served-by: cache-sjc1000101-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 84, 1
x-timer: S1701090403.783063,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146401
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1681838959
151.101.193.46200 OK 30 kB URL GET HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1681838959
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 251fe9dd065a30efd11ccab9a9613cda
9c8bec2886368f245985ae92222349ba92ac07f7
5b6bd64c8f7d37dd7bd34e3760cfffa93a982937376e2c02708f63c35c645a07
GET /css/sites.css?buildTime=1681838959 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 17 Nov 2023 23:10:32 GMT
etag: W/"6557f2e8-337f6"
expires: Tue, 05 Dec 2023 14:18:58 GMT
cache-control: max-age=1209600
x-host: blu66.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 514064
x-served-by: cache-sjc10044-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 108, 1
x-timer: S1701090403.786386,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29663
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1681838959&
151.101.193.46200 OK 33 kB URL GET HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1681838959&
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65024)
Hash 5925dea9d02b39d0e66e7ccc20371e80
79723f4fdf3c06cbc6a7b44fcc78cb1de7793be0
3b7805a3f0e4750ab90d4c40f0d1efdf11c5deb485ef9ed12b9c89b000f87f82
GET /js/lang/en/stl.js?buildTime=1681838959& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Nov 2023 16:09:05 GMT
etag: "65539ba1-2c90e"
expires: Wed, 29 Nov 2023 09:12:21 GMT
cache-control: max-age=1209600
x-host: grn29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 1050861
x-served-by: cache-sjc10034-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 659, 1
x-timer: S1701090403.782743,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33107
X-Firefox-Spdy: h2
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
151.101.193.46200 OK 9.7 kB URL GET HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Hash 6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduBRDjRVf4aujFpQt8U1R0AZRrT0tvE8fm-z8w_U2xex-GMjAJYQnABttdWeDPxN6Xmm0qeYmzq9wQe4BBub96qvpXffxjW
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 01 Sep 2023 02:23:15 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
via: 1.1 varnish
age: 37736
x-served-by: cache-bma1664-BMA
x-cache: HIT
x-cache-hits: 118
x-timer: S1701090403.785671,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1681838959
151.101.193.46200 OK 159 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1681838959
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (32029)
Size 159 kB (159146 bytes)
Hash 32390570d469eb116a806a70834ca50c
255baa94254d44b6525248d3ab61513253c3c785
dd8581d4db21d53a79ddeb0cea5289108dbdc0d214a6391a959d93a30e5d04b7
GET /js/site/main-customer-accounts-site.js?buildTime=1681838959 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 16 Nov 2023 21:38:54 GMT
etag: "65568bee-826d7"
expires: Fri, 01 Dec 2023 07:04:48 GMT
cache-control: max-age=1209600
x-host: grn90.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 885714
x-served-by: cache-sjc1000085-SJC, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 73, 1
x-timer: S1701090403.785237,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159146
X-Firefox-Spdy: h2
sales-paymentconfirmation-document.weebly.com/files/main_style.css?1681842127
199.34.228.53200 OK 8.1 kB URL GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/files/main_style.css?1681842127
IP 199.34.228.53:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (936)
Hash 62420ad61e84e7139d514472e809cd4a
69a2f4f7b17ba0fd02c16f73936e37b027016f92
c7705aec10c3e60af97e9e32713988ed8b9e9a077f92e9005a014a8ddb56609f
Analyzer Verdict Alert OpenPhish phishing Office365
GET /files/main_style.css?1681842127 HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 13:06:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn25.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/js/site/theme-plugins.js?buildTime=1681838959
151.101.193.46200 OK 3.7 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/theme-plugins.js?buildTime=1681838959
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (12622), with no line terminators
Hash b6889bf0cfd5fbd322bdac1906f1bf6e
8b540420c0922ed3f8188d81c7475e1f4b63f347
c4f595f154c135e6631df3e3a986a1fdebda177a47a91cbb9e645d37a0e03311
GET /js/site/theme-plugins.js?buildTime=1681838959 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 22 Nov 2023 22:54:32 GMT
etag: "655e86a8-314e"
expires: Sun, 10 Dec 2023 19:58:37 GMT
cache-control: max-age=1209600
x-host: blu115.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 61686
x-served-by: cache-sjc10055-SJC, cache-bma1664-BMA
x-cache: HIT, MISS
x-cache-hits: 20, 0
x-timer: S1701090403.783396,VS0,VE156
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3747
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1681838959
151.101.193.46200 OK 1.6 kB URL GET HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1681838959
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (13080)
Hash c7d1047def2e7b47a0ed305d11364367
1f5518be98057ddbaaa3b7c9971f76bfa5208bce
618945e6298532c5277626bba0cda8e16af87d69919dcdf54d63e01dafad8fca
GET /css/social-icons.css?buildtime=1681838959 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 17 Nov 2023 23:10:33 GMT
etag: W/"6557f2e9-3319"
expires: Wed, 06 Dec 2023 05:00:51 GMT
cache-control: max-age=1209600
x-host: grn99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:42 GMT
age: 461151
x-served-by: cache-sjc10047-SJC, cache-bma1664-BMA
x-cache: HIT, MISS
x-cache-hits: 55, 0
x-timer: S1701090403.787698,VS0,VE156
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1639
X-Firefox-Spdy: h2
sales-paymentconfirmation-document.weebly.com/files/theme/plugins.js?1573850854
199.34.228.53200 OK 18 kB URL GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/files/theme/plugins.js?1573850854
IP 199.34.228.53:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
Hash 86db86f3ec46612c95a552a133cf2501
ea949b709233c0f69f9ca1a2f38aab7e12c90c1b
8a295e631b0d74ebc6b734fdd9a2d5b29653da10a362599b0004ee135c115ce9
GET /files/theme/plugins.js?1573850854 HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 13:06:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 28 Jan 2022 02:17:25 GMT
x-rgw-object-type: Normal
ETag: W/"86db86f3ec46612c95a552a133cf2501"
x-amz-request-id: tx000000000000001c348c6-0062848b18-b9fbc7f-sfo1
X-Storage-Bucket: z8a29
X-Storage-Object: 8a295e631b0d74ebc6b734fdd9a2d5b29653da10a362599b0004ee135c115ce9
X-Host: blu154.sf2p.intern.weebly.net
Content-Encoding: gzip
sales-paymentconfirmation-document.weebly.com/files/theme/custom.js?1573850854
199.34.228.54200 OK 2.6 kB URL GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/files/theme/custom.js?1573850854
IP 199.34.228.54:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
Hash 167b5f2a55a6ac2775d799bf9a87343d
d62748afc0290b4cc7c63f0eb9911cad2239f94e
a16df105a4c2f66f83e36051a5d4b3e7399fadc9046f779b7f373a5dc46b2361
Analyzer Verdict Alert OpenPhish phishing Office365
GET /files/theme/custom.js?1573850854 HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 13:06:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 10 May 2022 00:14:12 GMT
x-rgw-object-type: Normal
ETag: W/"167b5f2a55a6ac2775d799bf9a87343d"
x-amz-request-id: tx0000000000000020fd944-006284d45e-b9fbc29-sfo1
X-Storage-Bucket: za16d
X-Storage-Object: a16df105a4c2f66f83e36051a5d4b3e7399fadc9046f779b7f373a5dc46b2361
X-Host: grn142.sf2p.intern.weebly.net
Content-Encoding: gzip
sales-paymentconfirmation-document.weebly.com/files/templateArtifacts.js?1681842127
199.34.228.54200 OK 1.6 kB URL GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/files/templateArtifacts.js?1681842127
IP 199.34.228.54:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type exported SGML document, ASCII text, with very long lines (1630)
Hash ae81ab7069097a055829fb9919258138
7dc529f16fb595bbbfc5937adfe1d0a5cf563f8a
5a630b41e7c3d34392bcb150a5731b6261bc6314d71d5db8407a646af15bf8af
Analyzer Verdict Alert OpenPhish phishing Office365
GET /files/templateArtifacts.js?1681842127 HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 13:06:43 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu78.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1681838959&
151.101.193.46200 OK 33 kB URL GET HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1681838959&
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65024)
Hash 5925dea9d02b39d0e66e7ccc20371e80
79723f4fdf3c06cbc6a7b44fcc78cb1de7793be0
3b7805a3f0e4750ab90d4c40f0d1efdf11c5deb485ef9ed12b9c89b000f87f82
GET /js/lang/en/stl.js?buildTime=1681838959& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 33107
server: nginx
content-type: application/javascript
last-modified: Tue, 14 Nov 2023 16:09:05 GMT
etag: "65539ba1-2c90e"
expires: Wed, 29 Nov 2023 09:12:21 GMT
cache-control: max-age=1209600
x-host: grn29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 1050862
x-served-by: cache-sjc10034-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 659, 1
x-timer: S1701090404.564535,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
sales-paymentconfirmation-document.weebly.com/uploads/1/4/5/4/145415824/published/mo.jpg?1681396341
199.34.228.54200 OK 3.6 kB URL GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/uploads/1/4/5/4/145415824/published/mo.jpg?1681396341
IP 199.34.228.54:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 306x69, components 3\012- data
Hash 3e064c5af868950a51da67326885013b
8531f2c6471bc9fe153e920363d6046d8ecbc833
bc3c0266f7e4e4d334ea2d50bd22c8e71c1a814e47da05cc0e3ac5be98c45949
Analyzer Verdict Alert OpenPhish phishing Office365
GET /uploads/1/4/5/4/145415824/published/mo.jpg?1681396341 HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 13:06:43 GMT
Content-Type: image/jpeg
Content-Length: 3619
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 14:32:21 GMT
x-rgw-object-type: Normal
ETag: "3e064c5af868950a51da67326885013b"
x-amz-request-id: tx00000c3a483f9bd1a2bc9-0065511e23-db1c716-sfo1
X-Storage-Bucket: zbc3c
X-Storage-Object: bc3c0266f7e4e4d334ea2d50bd22c8e71c1a814e47da05cc0e3ac5be98c45949
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes
sales-paymentconfirmation-document.weebly.com/uploads/1/4/5/4/145415824/published/untitled338.jpg?1681396348
199.34.228.53200 OK 2.3 kB URL GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/uploads/1/4/5/4/145415824/published/untitled338.jpg?1681396348
IP 199.34.228.53:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 204x71, components 3\012- data
Hash b171ec8522337aa2bc304ae8381d1d80
54abb1e0e4828df31bb6b2f276d8ce00b9de9292
65bc91352dddfff7737f9f55758dabdbc84842d87a6c947491aaf64d1cb82ab5
Analyzer Verdict Alert OpenPhish phishing Office365
GET /uploads/1/4/5/4/145415824/published/untitled338.jpg?1681396348 HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 13:06:43 GMT
Content-Type: image/jpeg
Content-Length: 2295
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 14:32:28 GMT
x-rgw-object-type: Normal
ETag: "b171ec8522337aa2bc304ae8381d1d80"
x-amz-request-id: tx000005091b5ed5a387864-0065512f4a-db1c716-sfo1
X-Storage-Bucket: z65bc
X-Storage-Object: 65bc91352dddfff7737f9f55758dabdbc84842d87a6c947491aaf64d1cb82ab5
X-Host: grn27.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/fonts/Lato/regular.woff2
151.101.193.46200 OK 24 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Lato/regular.woff2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /fonts/Lato/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sales-paymentconfirmation-document.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 23580
server: nginx
content-type: font/woff2
last-modified: Tue, 14 Nov 2023 16:06:39 GMT
etag: "65539b0f-5c1c"
expires: Wed, 29 Nov 2023 09:32:22 GMT
cache-control: max-age=1209600
x-host: blu28.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 1049662
x-served-by: cache-sjc1000089-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 31, 49
x-timer: S1701090404.719612,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Montserrat/regular.woff2
151.101.193.46200 OK 13 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Montserrat/regular.woff2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /fonts/Montserrat/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sales-paymentconfirmation-document.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 12708
server: nginx
content-type: font/woff2
last-modified: Fri, 17 Nov 2023 16:01:16 GMT
etag: "65578e4c-31a4"
expires: Tue, 05 Dec 2023 12:24:24 GMT
cache-control: max-age=1209600
x-host: blu157.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 520940
x-served-by: cache-sjc1000136-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 33, 76
x-timer: S1701090404.723378,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Lato/light.woff2
151.101.193.46200 OK 23 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Lato/light.woff2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /fonts/Lato/light.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sales-paymentconfirmation-document.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 23236
server: nginx
content-type: font/woff2
last-modified: Fri, 17 Nov 2023 16:01:16 GMT
etag: "65578e4c-5ac4"
expires: Mon, 04 Dec 2023 16:12:57 GMT
cache-control: max-age=1209600
x-host: blu86.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 593626
x-served-by: cache-sjc1000143-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 37, 6
x-timer: S1701090404.728338,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Montserrat/bold.woff2
151.101.193.46200 OK 13 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Montserrat/bold.woff2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /fonts/Montserrat/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sales-paymentconfirmation-document.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 12848
server: nginx
content-type: font/woff2
last-modified: Fri, 10 Nov 2023 19:57:01 GMT
etag: "654e8b0d-3230"
expires: Mon, 27 Nov 2023 13:45:41 GMT
cache-control: max-age=1209600
x-host: grn73.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 1207261
x-served-by: cache-sjc10033-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 37, 947
x-timer: S1701090404.731219,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.193.46200 OK 26 kB URL GET HTTP/3 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (2512)
Hash 99bbe560926e583b8e99036251deb783
8d81b73ae06f664f9d9e53dd5829a799bf434491
648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25752
server: nginx
content-type: application/javascript
last-modified: Wed, 22 Nov 2023 22:54:01 GMT
etag: "655e8689-124fe"
expires: Thu, 07 Dec 2023 08:49:33 GMT
cache-control: max-age=1209600
x-host: blu145.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 361029
x-served-by: cache-sjc10061-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 52, 2933
x-timer: S1701090404.767423,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1700694718
151.101.193.46200 OK 886 B URL GET HTTP/3 cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1700694718
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (2632)
Hash b09e83d2aeac55c0d3b67186cd5009ff
fa87cec84cc36fc2e70804867da24578ea331999
251a983a1b4b2cc76542aa398ae6b3499978a788860b54a8081d35d7a843303c
GET /css/free-footer-v3.css?buildtime=1700694718 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 886
server: nginx
content-type: text/css
last-modified: Wed, 22 Nov 2023 22:54:06 GMT
etag: "655e868e-a49"
expires: Wed, 06 Dec 2023 23:14:00 GMT
cache-control: max-age=1209600
x-host: grn30.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 395564
x-served-by: cache-sjc10029-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 54, 773
x-timer: S1701090404.811491,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/images/landing-pages/global/logotype.svg
151.101.193.46200 OK 1.5 kB URL GET HTTP/3 cdn2.editmysite.com/images/landing-pages/global/logotype.svg
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858)
Hash bc61dcb431a14c508075eeff4f74523a
8a660156d462bfb8c40f98c40616511f5857f34e
e8fce53e602b22e525d06ba31b166bb4ff461319bc9ae53caad095d185a4d15b
GET /images/landing-pages/global/logotype.svg HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1700694718
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1488
x-guploader-uploadid: ABPtcPpeLBeM2xKy8NOsKZqE9SLIbIR0a6hgWDVfBPXGi017ng7uaDo7Lg0ueA2PBwdQWtlsgSqVpmIIcA
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 03 Nov 2023 01:11:46 GMT
last-modified: Wed, 10 Oct 2018 21:37:00 GMT
etag: "bc61dcb431a14c508075eeff4f74523a"
x-goog-generation: 1539207420450301
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3507
content-type: image/svg+xml
x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg==
x-goog-storage-class: STANDARD
server: UploadServer
content-encoding: gzip
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
via: 1.1 varnish
age: 42707
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 96
x-timer: S1701090404.861091,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2
151.101.193.46200 OK 31 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2
IP 151.101.193.46:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data
Hash 2344124773c71bf4fa4ad407e7c3a467
3394a43ab1efab8a22a1f07222f7f02a9e12cbb8
bd4d2e29f503390e4951af9232fc43780b43d349647188d8f3f600835f16afb7
GET /fonts/SQ_Market/sqmarket-medium.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sales-paymentconfirmation-document.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 30768
server: nginx
content-type: font/woff2
last-modified: Wed, 22 Nov 2023 21:22:39 GMT
etag: "655e711f-7830"
expires: Mon, 11 Dec 2023 12:25:43 GMT
cache-control: max-age=1209600
x-host: grn29.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 27 Nov 2023 13:06:43 GMT
age: 2460
x-served-by: cache-sjc1000119-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 5, 16
x-timer: S1701090404.864694,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
142.250.74.163200 OK 191 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP 142.250.74.163:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sales-paymentconfirmation-document.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 26 Nov 2023 10:46:45 GMT
expires: Mon, 25 Nov 2024 10:46:45 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 94798
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sales-paymentconfirmation-document.weebly.com/favicon.ico
199.34.228.53200 OK 4.3 kB URL GET HTTP/1.1 sales-paymentconfirmation-document.weebly.com/favicon.ico
IP 199.34.228.53:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
Analyzer Verdict Alert OpenPhish phishing Office365
GET /favicon.ico HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 13:06:44 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001aecdb2-00628475f6-b9fbc64-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: blu125.sf2p.intern.weebly.net
Accept-Ranges: bytes
sales-paymentconfirmation-document.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.54200 OK 348 B URL POST HTTP/1.1 sales-paymentconfirmation-document.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.54:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: sales-paymentconfirmation-document.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://sales-paymentconfirmation-document.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Nov 2023 13:06:44 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn126.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=61
Connection: Keep-Alive
Content-Type: application/json
www.google.com/recaptcha/api.js?_=1701090407424
142.250.74.132200 OK 850 B URL GET HTTP/2 www.google.com/recaptcha/api.js?_=1701090407424
IP 142.250.74.132:443
Requested by https://sales-paymentconfirmation-document.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash 57e10dcd72dd2953878092014eae522b
95ba7e48825c26c5d9395ef2edb73e790bce6fa7
c7b54326365940d062bce26ed41579eebcb4946a86ba280790b603926692bd59
GET /recaptcha/api.js?_=1701090407424 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sales-paymentconfirmation-document.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Mon, 27 Nov 2023 13:06:43 GMT
date: Mon, 27 Nov 2023 13:06:43 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2