Report - bt-103993.weeblysite.com/

Report Overview

Submitted URL
bt-103993.weeblysite.com/
IP
162.159.140.60
ASN
#13335 CLOUDFLARENET
Submitted
2023-11-13 23:20:55
Access
public
Website Title
Home | bt
Final URL
bt-103993.square.site/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
76

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
rum.browser-intake-datadoghq.com	11420	2020-08-06	2020-12-16	2023-11-13	2.6 kB	1.1 kB	3.233.153.145
cbeac1191a3179ab82b9.cdn6.editmysite.com	unknown	1999-09-10	2023-09-15	2023-09-15	582 B	14 kB	151.101.129.46
cdn2.editmysite.com	11564	1999-09-10	2012-10-02	2023-11-13	426 B	76 kB	151.101.129.46
bt-103993.square.site	unknown	2019-02-05	2023-07-04	2023-09-15	39 kB	39 kB	199.34.228.40
cdn3.editmysite.com	32188	1999-09-10	2019-02-20	2023-11-13	25 kB	2.0 MB	151.101.129.46
bt-103993.weeblysite.com	unknown	2012-12-19	2023-07-03	2023-10-02	481 B	28 kB	162.159.140.60
sentry.io	2743	2012-04-07	2016-08-31	2023-11-13	571 B	552 B	35.186.247.156
cdn5.editmysite.com	43128	1999-09-10	2021-05-28	2023-11-13	710 B	7.4 kB	151.101.129.46

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.weeblysite.com/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc
2023-11-13	medium	bt-103993.square.site/	BT Group plc

PhishTank

Scan Date	Severity	Indicator	Alert
2023-07-03	medium	bt-103993.square.site/	Other
2023-07-03	medium	bt-103993.weeblysite.com/	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/chevron-left.svg	Other
2023-07-03	medium	bt-103993.square.site/square.ico	Other
2023-07-03	medium	bt-103993.square.site/app/website/cms/api/v1/users/144020543/customers/coordinates?cache-version=2023-11-13	Other
2023-07-03	medium	bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]&cache-version=2023-11-13	Other
2023-07-03	medium	bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]&cache-version=2023-11-13	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/close.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/search.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/close.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/spinner.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/close.svg	Other
2023-07-03	medium	bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]&cache-version=2023-11-13	Other
2023-07-03	medium	bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]&cache-version=2023-11-13	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/search.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/search.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/close.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/static/icons/sets/square/close.svg	Other
2023-07-03	medium	bt-103993.square.site/app/website/square.ico	Other

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (44)

	URL	Size	First Seen	Last Seen
	bt-103993.square.site/	140 B	2023-03-07	2024-07-27
Pretty URL bt-103993.square.site/ IP 199.34.228.40 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:13 Last Seen2024-07-27 00:55:25 Times Seen17962 Hash 1fdd2479d6ba8d5520c042ef8a2777ad 383ea6d170518471e06b0bd5330c748d7d966ef4 6cd9e9dc34c5d199beb0e095738cbe706c622914eb1a4a3a4285357d5b8f81cc Loading...

	cdn3.editmysite.com/app/website/js/runtime.02949c48a15605337fbd.js	61 kB	2023-11-13	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/runtime.02949c48a15605337fbd.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-13 21:57:22 Last Seen2023-11-14 01:35:16 Times Seen54 Hash 569081963afd84e02ad7c322f2af601a 2e75b56cd80b747b84d44329ee7606681121c294 f7cf65002ae1db8d44ea9d5fe174a98f228e9454dae4bad7549bb5f96fc78330 Loading...

	cdn3.editmysite.com/app/website/js/36018.590feea18d72e356dddf.js	15 kB	2023-10-24	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/36018.590feea18d72e356dddf.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 15:36:17 Last Seen2023-11-14 01:35:16 Times Seen1875 Hash 9f5e5bb55e22b9918664075d6b925cae 063b1c4baeecfc742bf831ab21ec0a1cbdb46f3a 81cf3f67b63af69096f53b0eddc39dea2bd1049511764512b35a1ff3d9c7a195 Loading...

	cdn3.editmysite.com/app/website/js/46217.377ffb96f8dae3823866.js	44 kB	2023-10-24	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/46217.377ffb96f8dae3823866.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 15:36:17 Last Seen2023-11-14 01:35:16 Times Seen1875 Hash f8a5dd1261e5c10dc50b2f5829db294f 1efd057ae39b9fb46716dc79a1a11276f169596b 8bb1f78dc7edbba6b9947f3e13b3c8f8f9442fab827215d53c93300d4f5986b3 Loading...

	cdn3.editmysite.com/app/website/js/50075.5785010b45b83e901526.js	131 kB	2023-10-25	2023-12-06
Pretty URL cdn3.editmysite.com/app/website/js/50075.5785010b45b83e901526.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 02:00:20 Last Seen2023-12-06 18:13:07 Times Seen93 Hash 4c9246a55af0ec1c5e5828b2f473d184 653d8c8c107e0c62bf8adb3667a9806515ab7a20 a9052762282e65dcc19f0810d88d34d6b118541e0152e438284694c9860071b9 Loading...

	bt-103993.square.site/	0 B	2023-03-07	2024-07-27
Pretty URL bt-103993.square.site/ IP 199.34.228.40 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-07-27 04:22:25 Times Seen41185106 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	956 B	2023-04-11	2024-07-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-07-27 01:07:39 Times Seen21518 Hash 03846f9824e92f5e7d3f62e8713d47c6 213d679fcd16aea7b17f05a04f4c72cbfdaaae35 217d8cf03eb4f191f072659dce350b80bc23d97219a4b55dae7f1eb96cbf16fc Loading...

	cdn3.editmysite.com/app/website/js/50774.d1eaf44ffa3bb84b91b4.js	7.8 kB	2023-11-02	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/50774.d1eaf44ffa3bb84b91b4.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 21:34:18 Last Seen2023-11-14 01:35:16 Times Seen809 Hash 9791dc0f7b7861caefea679caa993be9 91012195abde89f3079212754ead13b366183d87 3b8a35f69ef77f84752d13264a991dd981e4d8e20d2125925e113ba90234fa1a Loading...

	cdn3.editmysite.com/app/website/js/86141.c2a52b0f7ec89f22b41b.js	8.9 kB	2023-10-28	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/86141.c2a52b0f7ec89f22b41b.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 17:59:48 Last Seen2023-11-14 00:40:19 Times Seen36 Hash 07707320d1cd4f7a9e3856b93b61b49f 2d5c7eb3d7bc4c34a953c83a6c1e46114faf2148 0dd738fb3bf792032a9b8f40c2363cb63fcb3590c5d8cbc41f6d3351dcc3de04 Loading...

	cdn3.editmysite.com/app/website/js/68206.990eedf59c8976876669.js	9.2 kB	2023-10-28	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/68206.990eedf59c8976876669.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 17:59:49 Last Seen2023-11-14 00:40:19 Times Seen38 Hash 14d20999167f6b6e995e2f0112fa54aa c264cbe818a7ff825c3e3e5371f2e33be35dc0c2 3e3c73a888e52072b682aef8fd62e3e7b93a46c563d4af075d4e97b453b9b1c6 Loading...

	cdn3.editmysite.com/app/website/js/75876.6243f3bbebbd8642de6b.js	14 kB	2023-11-14	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/75876.6243f3bbebbd8642de6b.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 00:20:17 Last Seen2023-11-14 00:40:19 Times Seen8 Hash fd284dad2a14c442e2df6820aea4be5d a2408eff33d42fcd8fbe66e3bd7e2545ebaebecc 99d1a685990a310268b1953cd00b4d56e3cc5f5dd47646a77bffbd88ae5e797f Loading...

	cdn3.editmysite.com/app/website/js/86276.6e20dce5d4cae2bea300.js	11 kB	2023-10-13	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/86276.6e20dce5d4cae2bea300.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 01:36:18 Last Seen2023-11-14 00:40:19 Times Seen66 Hash 71155b39d1496c2b0155b9422a28e276 73f8be55b1174b1aad46ae8542a110d9d210599e a531a35bfb2aa46e203ebe7a10d78d52b9572880bfbd4cf4a9d541b91ec99c9c Loading...

	cdn3.editmysite.com/app/website/js/15422.11f3a8ff7a9bd0ef34e5.js	22 kB	2023-10-24	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/15422.11f3a8ff7a9bd0ef34e5.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 15:36:17 Last Seen2023-11-14 01:35:16 Times Seen1875 Hash a5898ed852bbdb103dfd167ef215bb4a 951025246039bed6cca19e770763a41f0b97ec5d 6a36da35ea3076137ce5921dcf55574227ba022bec2d2b109b7a06d98ce8db37 Loading...

	unknown	636 B	2023-04-11	2024-07-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-07-27 01:07:39 Times Seen21520 Hash a59aaa8925f1d6db41fb89bb017255c0 07ab4c2f735e6116f0fd5009b8c758ec2e772334 0044c6e874feb009378c626cd206b98f114070caf5b3c4ca1e3cec6923756466 Loading...

	cdn3.editmysite.com/app/website/js/site.9f2629efa9404a9054fc.js	3.0 MB	2023-11-13	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/site.9f2629efa9404a9054fc.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-13 21:57:23 Last Seen2023-11-14 01:35:16 Times Seen54 Hash c147f9c524e1c13c72f1caa351bcefb9 559f2741171bbf08e0c49ac77070f74ca112b51f f290145b808f3e41ccf0d156df3180ce36f553c1982ad4bc8551fc5d5b09bcce Loading...

	cdn3.editmysite.com/app/website/js/40996.df17b7f82338ced7daf3.js	36 kB	2023-11-13	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/40996.df17b7f82338ced7daf3.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-13 16:29:11 Last Seen2023-11-14 01:35:16 Times Seen61 Hash d2a8ceb757ce674d07a2a88c0dcee005 1f3d6d276f75f786eb0178d13f0c135d1db85998 a622f8be3e05f21bb4f2b1324f7a9a65856bd13ea27fc539f57a88c97a4e239b Loading...

	unknown	1.1 kB	2023-04-11	2024-07-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-07-27 01:07:39 Times Seen21220 Hash fb1fa750e498ddf325936923cd0d356e b1ab9e64280aef735182b255db6fe273200412a8 3db13173dbd9eb042356058f38b5c9b76a30cf82ed9251c738d23eb6827502b1 Loading...

	cdn3.editmysite.com/app/website/js/34707.77fa4fa576d77019a9d1.js	20 kB	2023-11-07	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/34707.77fa4fa576d77019a9d1.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 00:41:41 Last Seen2023-11-14 01:35:16 Times Seen444 Hash 45bec1e757aeee2c61657a57ab8f6f2f 71dee0408200022bf8f51a496bdc3ff46eda6015 213097b154fb5c11ed3686e5b07850a6cf552513986d8492a81ba945f49bb199 Loading...

	cdn3.editmysite.com/app/website/js/81715.49ceb777839faa5edd46.js	16 kB	2023-10-24	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/81715.49ceb777839faa5edd46.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 15:36:17 Last Seen2023-11-14 01:35:16 Times Seen1874 Hash db8275f5e361657953400d96c587bd7f f24fdba8c300e1129be7f44e7bdfed3de67c27b0 dd1c477f1c36a767f4ae6be651c7345d37eafcaf9da33287514e8c67be3db086 Loading...

	cdn3.editmysite.com/app/checkout/assets/checkout/js/system.js	12 kB	2023-09-05	2024-07-27
Pretty URL cdn3.editmysite.com/app/checkout/assets/checkout/js/system.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-05 13:57:26 Last Seen2024-07-27 00:55:26 Times Seen28992 Hash a7492af09b397dae7164c97ee2d4482d fd33d97b8e2581b90521c871926a1c081b9f2158 099183900da1f3584590a1506bd27e8d07ef58380e03140f18c71f09c9216703 Loading...

	cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js	177 kB	2023-05-26	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-11-14 01:35:16 Times Seen4272 Hash 6c4d536385ba208d7a9137ff833c16e9 b157cb47073082ea5fa4f7e79e33d2413c9d1acb 8cba77ba8bad22635b7118c172cbeba49874f062a7f30a1ce81998dd5e8bf092 Loading...

	cdn3.editmysite.com/app/website/js/free-footer.981302e127bb56732a3e.js	7.6 kB	2023-10-04	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/free-footer.981302e127bb56732a3e.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-04 13:41:28 Last Seen2023-11-14 01:35:16 Times Seen3196 Hash 8b7c1d42f663c59c0cc2900a81681b8f c00a0cac40debc6c3ae16e8cd444ee8d98644041 ca4b8a9ff5029e262e97f0b2ade8ee754282cd3250ca7f5509d27769a7d98eea Loading...

	cdn3.editmysite.com/app/website/js/languages/en.9103dcd31e005ac283cd.js	1.2 MB	2023-11-13	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/languages/en.9103dcd31e005ac283cd.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-13 16:29:11 Last Seen2023-11-14 01:35:16 Times Seen61 Hash db95e2d942aacc8dacefca4e8f664b5c a800ab1836b937db25adc3d8c7c6adf51960bce9 780a444abce6b4bf210b10d379d7caedf88faa825c216a4d38888a80e6db76a6 Loading...

	cdn3.editmysite.com/app/website/js/6156.15e13a5c247a9ba7b27c.js	22 kB	2023-10-26	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/6156.15e13a5c247a9ba7b27c.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-26 21:36:01 Last Seen2023-11-14 01:35:16 Times Seen1516 Hash d33ea0ee62ab57be3f1eba23126f9925 b2af831fcd0e4fb4e92bac60c64cd21b6d28de54 02fb1666b52b9f8de83829ca8b563de6e2a5990668706db7ad51ceaa0ada2a0b Loading...

	cdn3.editmysite.com/app/website/js/63457.bce4a6a1251098674eaa.js	12 kB	2023-10-26	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/63457.bce4a6a1251098674eaa.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-26 21:36:01 Last Seen2023-11-14 01:35:16 Times Seen1519 Hash 56c5093da46fcb48b92d649fffe59a63 0724c53948b2cc96900e9d7b03702a0b72457321 16b5dd1aed1d8e5f0721095c33a7574c682b341d3b09b0455e0085b972037d2e Loading...

	cdn3.editmysite.com/app/website/js/navigation-mobile.e750271b767bcdc82d1a.js	14 kB	2023-10-31	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/navigation-mobile.e750271b767bcdc82d1a.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 17:47:47 Last Seen2023-11-14 01:35:16 Times Seen1138 Hash 1f0720c6b084192a8898e88f075e2bfd 5961cac046b47f321f22e67536b40a740bd63940 3dd3cef731219786139c4982f0bea5203687e9773ccd738c24f790c186e465d1 Loading...

	cdn3.editmysite.com/app/website/js/16526.101b2153816049bd7687.js	28 kB	2023-10-31	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/16526.101b2153816049bd7687.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 17:47:47 Last Seen2023-11-14 01:35:16 Times Seen1138 Hash 26d81a0b8160538a0d6bba06399c71fb 83aaf6cfe6ce7e1c790eff02fe3209c2c1f45ff4 b4314e89bc40559ef7a14e16724355843a5e298b70fde25222d10e16e75f1332 Loading...

	cdn3.editmysite.com/app/website/js/87697.74d8d6c3a59a34e861b7.js	4.1 kB	2023-06-22	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/87697.74d8d6c3a59a34e861b7.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-22 01:04:00 Last Seen2023-11-14 01:35:16 Times Seen4292 Hash 968dc755f854e6189e81104e4ac2d541 cc6d60b0d67474d564c859de1c0a8cef14a714e2 29f7d06e0b00ed26a71bf5f9b5dfd55e8062fba5aebc27e6693ee21ec6f364d2 Loading...

	cdn3.editmysite.com/app/website/js/18384.176f66eb588874bb9706.js	12 kB	2023-10-25	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/18384.176f66eb588874bb9706.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 01:20:18 Last Seen2023-11-14 01:35:16 Times Seen1870 Hash a2f3814021c877242107012287ed44ee 5b30a16f8420fb4136e9c22b7c31f0438753340a 022220aea8015480080f3575c5c1682be12f4ee8edf783c3c0924e1ee49e2e18 Loading...

	cdn3.editmysite.com/app/website/js/header-8.7250468b20baae6127bc.js	76 kB	2023-11-14	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/header-8.7250468b20baae6127bc.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 00:20:57 Last Seen2023-11-14 00:20:58 Times Seen2 Hash d689aa622fc5dc2f573d11c7e194f7c7 4c3ecfe207e2ca32b00ef220d0bd11930e849faf b80e379b1910a346fe3ab386fd81537e57a5b25ab8d6389791433b720c056d4a Loading...

	unknown	37 B	2023-04-11	2024-07-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-07-27 04:21:57 Times Seen263320 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	cdn3.editmysite.com/app/website/js/home-page.26bdf9cfa7e8021ce8fb.js	21 kB	2023-11-02	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/home-page.26bdf9cfa7e8021ce8fb.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 21:34:18 Last Seen2023-11-14 01:35:16 Times Seen810 Hash 2b7da94d92d6d5d04cc3e5ea9e740aee eea238f3f9c695dd22f3a32f398536ace89c6cd5 137c83a2e41d404f896cf6f291ffe8fca4e2d3aff7a6f08f5738f337144380ad Loading...

	cdn3.editmysite.com/app/website/js/footer-7.e30a432469d934ca499b.js	4.9 kB	2023-10-04	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/footer-7.e30a432469d934ca499b.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-04 01:38:20 Last Seen2023-11-14 01:35:16 Times Seen3158 Hash 3e380f78436f68aad2554ddef8844791 c9aae5d5a61610c15822dc536564e05fe99abd4f 9795be59924720e67b8415cce541774714c209017c51c726136d6115b27afac9 Loading...

	cdn3.editmysite.com/app/website/js/4020.a473821acb7d7b794bb0.js	66 kB	2023-11-14	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/4020.a473821acb7d7b794bb0.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 00:20:17 Last Seen2023-11-14 00:40:19 Times Seen8 Hash 605570a3323d8ada6cda58359a0c4202 1404f6897557761c9fb11e73c87a47bcfe03af3b bef793c33c0df5d5bcb1bf481eea1f45637422977d9545f494e68aba87330805 Loading...

	cdn3.editmysite.com/app/website/js/11775.0289efd8be2977d09a8d.js	26 kB	2023-11-01	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/11775.0289efd8be2977d09a8d.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 14:39:18 Last Seen2023-11-14 00:40:19 Times Seen30 Hash 113cfde3fe0ed0b4d69f31e6ae9cd210 fe6f3303cd35954a74008308600a679a06834fd4 b69684ec5ad39957b097126cc7e27279b30c1cdf3e7e6b9f1da3c0f387eb63dd Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-07-27
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-07-27 01:07:40 Times Seen42866 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	unknown	496 B	2023-04-11	2024-07-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-07-27 01:07:39 Times Seen21520 Hash c1db72e213146c75189f4b6a82fc7f3c 3867c5fecc075a70965a96c23c59e7351b6da0d6 4d286bfbd53979af2cd45d0286d0400b8ae4da5f06b116dcc30db452b71481c1 Loading...

	unknown	804 B	2023-04-11	2024-07-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-07-27 01:07:39 Times Seen21518 Hash 05875b1ff70334890bde3d10abb7285c f92d9ebd14575493e8bcc646a4e3c51049c938c3 473ddf16120d811a56d372dfc3bacb4e5dee2e244d4a5760e32ab16a1a1ca839 Loading...

	cdn3.editmysite.com/app/website/js/96810.02f228e6bd7598bdee3b.js	11 kB	2023-11-09	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/96810.02f228e6bd7598bdee3b.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-09 22:06:30 Last Seen2023-11-14 01:35:16 Times Seen204 Hash 5810fe2cc2f7cda8a3479b24f2c44775 11fd4aa02b018925e27216313c419cbe59bc5afb 57adb448603658cea8e729380608ac4c9faf778fb4e3e28bd82ec6415aaa756d Loading...

	cdn3.editmysite.com/app/website/js/32949.7c4aa91b5d57a6dfcbd0.js	22 kB	2023-11-13	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/32949.7c4aa91b5d57a6dfcbd0.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-13 16:29:11 Last Seen2023-11-14 01:35:16 Times Seen61 Hash 63d2d674e91e07cfa941f5fc1222a942 7ab42d0e153b0c38921790bbb6a5644d0b9356f8 6089acb070bd5c61eaaaa9af96f9e73cc489c1237ee19e977c39de9e98f4f346 Loading...

	cdn3.editmysite.com/app/website/js/25330.20634d9efe98e6097e3e.js	9.7 kB	2023-05-30	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/25330.20634d9efe98e6097e3e.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-30 13:22:38 Last Seen2023-11-14 01:35:16 Times Seen8102 Hash 5dfd5b594f0fa1c1fba15f57b6be580f 1ebefa473be4fd4f3e39861f0e7b05021126826b 7c9cf48ac2e76198a496c14dcfc8f110dfb710630922a0cde66f5bf6174c4750 Loading...

	cdn3.editmysite.com/app/website/js/2170.5a16bfd235351842997b.js	44 kB	2023-10-20	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/2170.5a16bfd235351842997b.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 01:47:13 Last Seen2023-11-14 01:35:16 Times Seen2222 Hash 7667988cd90ba5bcb9c4352468815def 3927f40fe6a87e2410d5283eb7b603046c0facb8 a0dd66db41efd44d91dae9742c7e96dc6d0eacf14bf85df47b602a04c5dcf229 Loading...

	cdn3.editmysite.com/app/website/js/cart-1.80724f3dfdd7e247d420.js	108 kB	2023-11-09	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/cart-1.80724f3dfdd7e247d420.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-09 22:06:30 Last Seen2023-11-14 01:35:16 Times Seen203 Hash 60172efcba65b7fca3bfaeeaf56311c4 f61ac2f6aeb61cd5bf8d690603ad6373c3b56b65 dcd902927aec196385a20503cc84c2ab63ca1792c146b83e218e69681168d170 Loading...

	cdn3.editmysite.com/app/website/js/banner-1.673cdaf0b18d11def0fa.js	11 kB	2023-09-30	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/banner-1.673cdaf0b18d11def0fa.js IP 151.101.129.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-30 04:23:55 Last Seen2023-11-14 00:40:19 Times Seen50 Hash 4dc9771250b85514be1a760d1546a38a ea29f781b894db4aaa5985df9361ca8850ed7012 b1688774874b23ea21f34644238147ea6cf3b325c8a94a8016ab9cdcdd9d703a Loading...

HTTP Transactions (80)

URL IP Response Size

bt-103993.square.site/

199.34.228.40

200 OK

10 kB

URL User Request GET HTTP/1.1
bt-103993.square.site/
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21320)
Size
10 kB (10382 bytes)
Hash
ffdb94c42c46bae5797b2c3615af03a5
311c22eec8edf7ac72b05e7d484beca7caf88c78
52f2ab1f12f3cf8577d0b7f1ffbe1aba911ef77b0de4f56ff69c71aa5d252633

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET / HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 13 Nov 2023 23:20:34 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:35 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:35 GMT; Max-Age=1209600; path=/; samesite=lax
PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:35 GMT; Max-Age=1209600; path=/; httponly; samesite=lax
X-Host: blu84.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 8e60918947036cd40733e39ee6885391
Content-Encoding: gzip

cdn3.editmysite.com/app/website/css/site.158cdc91c614089e553c.css

151.101.129.46

200 OK

39 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/css/site.158cdc91c614089e553c.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (64948), with no line terminators
Size
39 kB (39047 bytes)
Hash
c14ae1ece497664718f42b890f455933
589ee3baed2136e20c87ccbdf5a668659d1b9117
a44f0f71ff55c33154268df6815f30ca7cd1db0a1c2b2c9c7b9d1ead77e19fc9

HTTP Headers

GET /app/website/css/site.158cdc91c614089e553c.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 18:10:19 GMT
x-rgw-object-type: Normal
etag: W/"c14ae1ece497664718f42b890f455933"
x-amz-request-id: tx00000f70dc16ff3fa09ec-00655266f0-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d421631698b2ab08f3833cddd86a0ae9d61b07ae
x-request-id: 7bd5c986df51834b44d4259d18459e58
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 18328
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917636.627255,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 39047
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.31d6cfe0d16ae931b73c.css

151.101.129.46

200 OK

0 B

URL GET HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.31d6cfe0d16ae931b73c.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/checkout/assets/checkout/css/wcko.31d6cfe0d16ae931b73c.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 31 Oct 2023 14:45:11 GMT
etag: "654112f7-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 1152174
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917636.627916,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 0
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/js/system.js

151.101.129.46

200 OK

5.1 kB

URL GET HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (12165)
Size
5.1 kB (5122 bytes)
Hash
a7492af09b397dae7164c97ee2d4482d
fd33d97b8e2581b90521c871926a1c081b9f2158
099183900da1f3584590a1506bd27e8d07ef58380e03140f18c71f09c9216703

HTTP Headers

GET /app/checkout/assets/checkout/js/system.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 13 Jul 2023 19:54:24 GMT
x-rgw-object-type: Normal
etag: W/"a7492af09b397dae7164c97ee2d4482d"
x-amz-request-id: tx000007dae49fc043f2000-0064b05685-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 1207146
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 33
x-timer: S1699917636.629414,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5122
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/runtime.02949c48a15605337fbd.js

151.101.129.46

200 OK

30 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/runtime.02949c48a15605337fbd.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (55907)
Size
30 kB (29487 bytes)
Hash
569081963afd84e02ad7c322f2af601a
2e75b56cd80b747b84d44329ee7606681121c294
f7cf65002ae1db8d44ea9d5fe174a98f228e9454dae4bad7549bb5f96fc78330

HTTP Headers

GET /app/website/js/runtime.02949c48a15605337fbd.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 20:27:43 GMT
x-rgw-object-type: Normal
etag: W/"569081963afd84e02ad7c322f2af601a"
x-amz-request-id: tx000000836dc2972852a92-006552871c-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.02949c48a15605337fbd.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 0b7139eb81b01817480a89039992f865c8612c3c
x-request-id: 02a117850bbd60719c5c6588ca0b3b13
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 10269
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 8
x-timer: S1699917636.632953,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29487
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js

151.101.129.46

200 OK

72 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (27360)
Size
72 kB (72167 bytes)
Hash
0af09f4e4586891f0f33944d01827790
786b780c119a813fe22368b3648a27bbb67090b6
fee99a78d692363c984633ef6e8239bc7ac711e0bfdde6d0eeb1e62f3c5025bc

HTTP Headers

GET /app/website/js/vue-modules.59964f34ec7130d2b996.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:17 GMT
x-rgw-object-type: Normal
etag: W/"0af09f4e4586891f0f33944d01827790"
x-amz-request-id: tx00000ba9ca7fc9b41d2bd-0064700cb3-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.59964f34ec7130d2b996.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 240e69a2b8e4862fb54a418282b618a944d8909e
x-request-id: 932b1b77fe8b6cfb8e4935f487245118
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 4140899
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 12
x-timer: S1699917636.634621,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 72167
X-Firefox-Spdy: h2

bt-103993.weeblysite.com/

162.159.140.60

302 Found

26 kB

URL User Request GET HTTP/2
bt-103993.weeblysite.com/
IP
162.159.140.60:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectweeblysite.com
FingerprintB1:46:C7:51:E8:C2:74:1A:AE:4E:AD:99:BF:5E:02:6E:F0:83:81:EF
ValidityFri, 29 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
data
Size
26 kB (26118 bytes)
Hash
f3a665dd6db02c7964e8a351a6c9ff97
6b89708b0ee30320610938a8ab3b1e13f2fe2759
834019ee50a0aaba48d2fffc797199a22341b5f45fe900d15d3fbd073e02683d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET / HTTP/1.1
Host: bt-103993.weeblysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 13 Nov 2023 23:20:34 GMT
content-type: text/html; charset=UTF-8
location: https://bt-103993.square.site/
cf-ray: 825abef9ac9456c6-OSL
cf-cache-status: DYNAMIC
cache-control: no-cache, private
x-host: grn64.sf2p.intern.weebly.net
x-request-id: e03ab4d0b09b8ccbb99b1db37cc3a512
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
set-cookie: publishedsite-xsrf=eyJpdiI6ImttRU5abWhMNy80NzJPWXpIMHVYVlE9PSIsInZhbHVlIjoiN2tjMUhXbmZKRU9UUkl3clJMRE5BNlpoUTNRdFdmaDZ2dTR2TjVBd282YUJHS1BURGtaMlc0WHNNVEtNYUM1VDlOc3d2cmp4Wm1NenFCa25YVk85WXlicHlNdE9SeE5JZkwzdmNYdmhJN05lU1ZVbVVIc0gvRlpPeEdiZEpSb3giLCJtYWMiOiJkYjhhOTQwMDgxYWVjNWZjNzhlN2U5MGM1NWIwOTljNzEzOTVhMzMxN2Y1OGQ3NTEwZmM5ZWNmMDY2MDM1NWQ0IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:34 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6ImxEV1NwNHdnNEo1OGZ4Uk1TbTMrMlE9PSIsInZhbHVlIjoiODUxOFN6ZWNsNnFNS1grOHNWWGxLM1gwK0NCRmFXbFBvUmlndWpMVVJPN3EwN25TWUJLQkYxd2hSd3VVZld1ZzVZQ1U4OGdtMXBmY0dkQ0lFd1lON1VmNEVnRFZudzBHU0t1MFhrRVpvS1RSTTdldzQ5eWlTN21yai92L0lpanAiLCJtYWMiOiIzMGI5MjgxYjA4MjNkMDA3NTNhMGMzNTVhZTMxNjVkYTZlNmY1ZDZlMDc5NzBlNjZiYzE5OGU0OTAwMTI2YzAxIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:34 GMT; Max-Age=1209600; path=/; samesite=lax
PublishedSiteSession=eyJpdiI6IjNHdWFvUHczMWJwaVB1ZDFmc0FOcWc9PSIsInZhbHVlIjoic0RkOHM0UzNReHZsVTR0WGRwUmQ1RlpRYi8rTFVFWjF0QzV4QWlBa0xqaVB2ZmpYL3gzL1JiYVhPaFJseUp5YTlqd1hJL1NmS0E2TmRSZXpEcVdxNm43NUo2eGxvVFB1UmIrUU45ektDRFBvOU5OMVZHdERTNXJQTGZBOW42M2oiLCJtYWMiOiIyNjE4OGZiODMzYWJlMTExYTNkMWMzNGM4NGI2YmMwMmJiYjljNGVhM2I4OGU1NzRhNTc1YmM4Y2U1MzUwNDE4IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:34 GMT; Max-Age=1209600; path=/; httponly; samesite=lax
__cf_bm=yVsmXOI9BGYH6Q.3ifuFwsdEWHV1.ioMjsKOYdyTnX4-1699917634-0-AVcj2TXRmHBp0V3snmJxy8YeHrY/BuYTC8/04a/CK8+ZdwjJwHAWQ7r7qHpvGWzIrOsfWBdeynzVwK3yMao152Q=; path=/; expires=Mon, 13-Nov-23 23:50:34 GMT; domain=.weeblysite.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/languages/en.9103dcd31e005ac283cd.js

151.101.129.46

200 OK

317 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/languages/en.9103dcd31e005ac283cd.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
317 kB (317074 bytes)
Hash
db95e2d942aacc8dacefca4e8f664b5c
a800ab1836b937db25adc3d8c7c6adf51960bce9
780a444abce6b4bf210b10d379d7caedf88faa825c216a4d38888a80e6db76a6

HTTP Headers

GET /app/website/js/languages/en.9103dcd31e005ac283cd.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:55 GMT
x-rgw-object-type: Normal
etag: W/"db95e2d942aacc8dacefca4e8f664b5c"
x-amz-request-id: tx000001a808d8d7198b03c-0065523c7a-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.9103dcd31e005ac283cd.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 22812426125154da6e64c21ef16529ca
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 29267
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917636.636163,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 317074
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/site.9f2629efa9404a9054fc.js

151.101.129.46

200 OK

982 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/site.9f2629efa9404a9054fc.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (49098)
Size
982 kB (982030 bytes)
Hash
c147f9c524e1c13c72f1caa351bcefb9
559f2741171bbf08e0c49ac77070f74ca112b51f
f290145b808f3e41ccf0d156df3180ce36f553c1982ad4bc8551fc5d5b09bcce

HTTP Headers

GET /app/website/js/site.9f2629efa9404a9054fc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 20:27:43 GMT
x-rgw-object-type: Normal
etag: W/"c147f9c524e1c13c72f1caa351bcefb9"
x-amz-request-id: tx000003d1ca8c3d4a5d6a3-0065528726-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.9f2629efa9404a9054fc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
x-request-id: 9e359c8f32cf8aecea8ac3f1ee5ad652
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 10268
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917636.639201,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 982030
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.251ea41e562e03bc.js

151.101.129.46

200 OK

4.1 kB

URL GET HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.251ea41e562e03bc.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
JSON data\012- , ASCII text, with very long lines (18701), with no line terminators
Size
4.1 kB (4088 bytes)
Hash
d6fa494f010bf949642cb481a5703b55
2f1976fd07de590f639e09aa2f636f795b261cde
b1a52364becee055bba45bf1ece96347eb638b55e6762c1b1bfa5197d117e161

HTTP Headers

GET /app/checkout/assets/checkout/imports.en.251ea41e562e03bc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 18:35:49 GMT
x-rgw-object-type: Normal
etag: W/"d6fa494f010bf949642cb481a5703b55"
x-amz-request-id: tx00000dfb5623c7bb6d0f1-0065526d13-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.251ea41e562e03bc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 16861
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 23
x-timer: S1699917636.105109,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4088
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8ecf5ca1679dc915.json

151.101.129.46

200 OK

683 B

URL GET HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8ecf5ca1679dc915.json
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
JSON data\012- , ASCII text, with very long lines (2521), with no line terminators
Size
683 B (683 bytes)
Hash
086ea433587b249cdba5d10ff37b2751
463237d0a29f13d72be76a5f5ce0eff332dfb645
c7386736c730e199f00c2385650c7ba7b14999398f13084b437af3afa4773636

HTTP Headers

GET /app/checkout/assets/checkout/locale-imports-map.8ecf5ca1679dc915.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Tue, 07 Nov 2023 15:35:33 GMT
etag: W/"654a5945-9d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 520641
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 13
x-timer: S1699917636.110738,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 683
X-Firefox-Spdy: h2

bt-103993.square.site/uploads/b/57d5f160-6fde-11ed-b7eb-71b6f0c86555/icon_180x180_ios.png?width=180

199.34.228.40

200 OK

272 B

URL GET HTTP/1.1
bt-103993.square.site/uploads/b/57d5f160-6fde-11ed-b7eb-71b6f0c86555/icon_180x180_ios.png?width=180
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
272 B (272 bytes)
Hash
e17b262431dbad67687c3b78c92c09f9
bb8d1aa77e86bba6118ad9d59b2e71fc0c40c194
84717b9332a12a82cf3ee5c72b5843e1487691a28e9bb1bb6eaa9e06e15001fe

HTTP Headers

GET /uploads/b/57d5f160-6fde-11ed-b7eb-71b6f0c86555/icon_180x180_ios.png?width=180 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:36 GMT
Content-Type: image/webp
Content-Length: 272
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "F5mJ839hi3VhBqNjVRiaK8s3mHa8EWDUVveiyEVIRwE"
Fastly-Io-Info: ifsz=503 idim=180x180 ifmt=png ofsz=272 odim=180x180 ofmt=webp
Fastly-Io-Served-By: vpop-haf2300706
Fastly-Stats: io=1
X-Amz-Request-Id: tx000004a8e86037bc7da95-0064a3628a-db1c716-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: za671
X-Storage-Object: a671350afe8db049bfb3b36936109ca91fe67579383b09e856deb563517cc081
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc10034-SJC
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1699917637.824829,VS0,VE27
Vary: Accept
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu155.sf2p.intern.weebly.net

sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7

35.186.247.156

200 OK

2 B

URL POST HTTP/2
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP
35.186.247.156:443
ASN
#15169 GOOGLE

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subjectsentry.io
Fingerprint18:3C:11:53:56:65:8B:09:02:F1:6B:26:E3:C2:C9:37:E0:E8:72:98
ValidityTue, 08 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
Content-Type: text/plain;charset=UTF-8
Content-Length: 419
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 13 Nov 2023 23:20:37 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/home-page.74bc6c44281c650698a8.css

151.101.129.46

200 OK

409 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/home-page.74bc6c44281c650698a8.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (924), with no line terminators
Size
409 B (409 bytes)
Hash
c15f76990b289605f4ed83b445dae60c
1794f43d0196f4a89af357e77fdb07bd0b4b4166
bac55151545a69c7126cb8e8bfef99e07e0f595a9d07f9003e3d8420ba2964d3

HTTP Headers

GET /app/website/css/home-page.74bc6c44281c650698a8.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 409
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:02:40 GMT
x-rgw-object-type: Normal
etag: W/"c15f76990b289605f4ed83b445dae60c"
x-amz-request-id: tx000003bc82c6d3699a0c5-00654400c3-db1a051-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b7bf12796623a77cb2c69586f70d87852128c2d
x-request-id: 45db360985042861c9072bef66209f02
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 962146
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.984054,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/96810.02f228e6bd7598bdee3b.js

151.101.129.46

200 OK

4.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/96810.02f228e6bd7598bdee3b.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (6503)
Size
4.8 kB (4847 bytes)
Hash
5810fe2cc2f7cda8a3479b24f2c44775
11fd4aa02b018925e27216313c419cbe59bc5afb
57adb448603658cea8e729380608ac4c9faf778fb4e3e28bd82ec6415aaa756d

HTTP Headers

GET /app/website/js/96810.02f228e6bd7598bdee3b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4847
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 09 Nov 2023 17:58:23 GMT
x-rgw-object-type: Normal
etag: W/"5810fe2cc2f7cda8a3479b24f2c44775"
x-amz-request-id: tx00000974b83d8604e4cd0-00654d1e21-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/96810.02f228e6bd7598bdee3b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 20855b9cd5da93b892aa8a516e13933950ef9f2c
x-request-id: b4c3c55a9257945226c2d755e166d561
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 364692
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.971686,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/34707.77fa4fa576d77019a9d1.js

151.101.129.46

200 OK

7.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/34707.77fa4fa576d77019a9d1.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (19998)
Size
7.8 kB (7785 bytes)
Hash
45bec1e757aeee2c61657a57ab8f6f2f
71dee0408200022bf8f51a496bdc3ff46eda6015
213097b154fb5c11ed3686e5b07850a6cf552513986d8492a81ba945f49bb199

HTTP Headers

GET /app/website/js/34707.77fa4fa576d77019a9d1.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7785
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 Nov 2023 20:22:35 GMT
x-rgw-object-type: Normal
etag: W/"45bec1e757aeee2c61657a57ab8f6f2f"
x-amz-request-id: tx00000625ea48a5d8fdb08-0065494b80-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/34707.77fa4fa576d77019a9d1.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
x-request-id: 775d7f17dc8c9fa8ef05d0f31c15fe2e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 4337
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.979840,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/50774.d1eaf44ffa3bb84b91b4.js

151.101.129.46

200 OK

3.6 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/50774.d1eaf44ffa3bb84b91b4.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (4213)
Size
3.6 kB (3613 bytes)
Hash
9791dc0f7b7861caefea679caa993be9
91012195abde89f3079212754ead13b366183d87
3b8a35f69ef77f84752d13264a991dd981e4d8e20d2125925e113ba90234fa1a

HTTP Headers

GET /app/website/js/50774.d1eaf44ffa3bb84b91b4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3613
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:02:40 GMT
x-rgw-object-type: Normal
etag: W/"9791dc0f7b7861caefea679caa993be9"
x-amz-request-id: tx00000ca8af090a546db83-00654400c6-db1a099-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/50774.d1eaf44ffa3bb84b91b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: 07e2f99ba316ffe254bde8c85375f654
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 594858
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.982228,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/home-page.26bdf9cfa7e8021ce8fb.js

151.101.129.46

200 OK

6.2 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/home-page.26bdf9cfa7e8021ce8fb.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (20971)
Size
6.2 kB (6213 bytes)
Hash
2b7da94d92d6d5d04cc3e5ea9e740aee
eea238f3f9c695dd22f3a32f398536ace89c6cd5
137c83a2e41d404f896cf6f291ffe8fca4e2d3aff7a6f08f5738f337144380ad

HTTP Headers

GET /app/website/js/home-page.26bdf9cfa7e8021ce8fb.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 6213
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:02:40 GMT
x-rgw-object-type: Normal
etag: W/"2b7da94d92d6d5d04cc3e5ea9e740aee"
x-amz-request-id: tx0000017e3ee938af8cb4a-00654400ce-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.26bdf9cfa7e8021ce8fb.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b7bf12796623a77cb2c69586f70d87852128c2d
x-request-id: a58bd499def096802c17ee7d0fc3b26b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 962146
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.987530,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

bt-103993.square.site/app/website/static/icons/sets/square/chevron-left.svg

199.34.228.40

200 OK

216 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/chevron-left.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
216 B (216 bytes)
Hash
6aa1efc78eeaabc61f81143850c56a20
785cfb7866be5b416bd474d6c4bcac5e25b61487
00c629ac07a53a8dd92ace0c212743ef17337c75436767830a81b66c246e3074

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/chevron-left.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 2939708918495257057
x-datadog-sampling-priority: 1
x-datadog-trace-id: 3811644875628843812
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:37 GMT
Content-Type: image/svg+xml
Content-Length: 216
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "6aa1efc78eeaabc61f81143850c56a20"
x-amz-request-id: tx00000ea08722278dc67aa-0064386db6-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn72.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 8186797af0a7fb04bc13aa269dba03fb

bt-103993.square.site/square.ico

199.34.228.40

200 OK

6.5 kB

URL GET HTTP/1.1
bt-103993.square.site/square.ico
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
6.5 kB (6518 bytes)
Hash
d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /square.ico HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:37 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001ac6ae5-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu127.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 320a5cbd3a92d902f26a884d3ba6e428

bt-103993.square.site/app/website/cms/api/v1/users/144020543/customers/coordinates?cache-version=2023-11-13

199.34.228.40

200 OK

70 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/cms/api/v1/users/144020543/customers/coordinates?cache-version=2023-11-13
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
70 B (70 bytes)
Hash
a7e073f68c3ee5180cb244493dc1aee5
7d07a4edaae2c0e314f1e78fb52fed03c2444775
556513032d462a1dd91f979c97837ed47573e84e16d1316ea303ec341a99124f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/cms/api/v1/users/144020543/customers/coordinates?cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 363010131553162388
x-datadog-sampling-priority: 1
x-datadog-trace-id: 2455429796674354527
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 13 Nov 2023 23:20:37 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:37 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:37 GMT; Max-Age=1209600; path=/; samesite=lax
X-Host: blu127.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 42f4baf907f83383fcf0ee1cc7188396
Content-Encoding: gzip

bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]&cache-version=2023-11-13

199.34.228.40

200 OK

955 B

URL POST HTTP/1.1
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]&cache-version=2023-11-13
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (955), with no line terminators
Size
955 B (955 bytes)
Hash
f7cda1de4c03fef258c50e71ce1a6805
9a23f11fd66602e2de59576f6785987eca3addde
e12875b1b57ece70569403afc013462d43043f090be9eff386b948cfff6dcf0d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 7874064904217201342
x-datadog-sampling-priority: 1
x-datadog-trace-id: 3908351641772819921
Content-Length: 78
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:37 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn42.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 955
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]&cache-version=2023-11-13

199.34.228.40

200 OK

201 B

URL POST HTTP/1.1
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]&cache-version=2023-11-13
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
201 B (201 bytes)
Hash
bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 3157428825104593929
x-datadog-sampling-priority: 1
x-datadog-trace-id: 6257343048144819612
Content-Length: 83
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:37 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn46.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

cdn3.editmysite.com/app/website/static/fonts/Square%20Market/font.css

151.101.129.46

200 OK

393 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/font.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text
Size
393 B (393 bytes)
Hash
a7ddbe9e253a4f3a9c6de33cf4f3ce60
121dc4d397d856ca5a65afaa1792e4c12a53132d
305ed7422238f098fb7513413aa992da0ced50741e5286ced433e30f5bf59971

HTTP Headers

GET /app/website/static/fonts/Square%20Market/font.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 393
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 17 Sep 2019 17:09:50 GMT
x-rgw-object-type: Normal
etag: W/"a7ddbe9e253a4f3a9c6de33cf4f3ce60"
x-amz-request-id: tx0000092be2f69bd3f54b4-006536898f-db1eedd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: da60ac2a63b558797da67b7f27ab6101bf9665d8
x-request-id: 3fde30e14c7e32244d1230dcdba51990
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1798842
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917638.093137,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn5.editmysite.com/app/store/api/v28/editor/users/144020543/sites/372939439502453529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1&cache-version=2023-11-13

151.101.129.46

200 OK

6.7 kB

URL GET HTTP/2
cdn5.editmysite.com/app/store/api/v28/editor/users/144020543/sites/372939439502453529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1&cache-version=2023-11-13
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
JSON data\012- , ASCII text, with very long lines (13626)
Size
6.7 kB (6725 bytes)
Hash
e7e0e89f0fa514f1fa7f905b19ba1344
8c47cb7f39e7162e60d72868f1184ba9c6ff638a
3f6e4d2816b13f74ddd7b4c3ecc1fa7da6253218952bc520834c4cfc5628cb87

HTTP Headers

GET /app/store/api/v28/editor/users/144020543/sites/372939439502453529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1&cache-version=2023-11-13 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: no-cache, private
etag: W/"65e59f5ddd14eecab9f938333d0c1adc"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: c559860203ed9ed1956a722c2b693b54b45ec72d
x-request-id: 52f837270bae7971d2ee4b3911a38790
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1621-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1699917638.625809,VS0,VE297
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/32949.7c4aa91b5d57a6dfcbd0.js

151.101.129.46

200 OK

7.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/32949.7c4aa91b5d57a6dfcbd0.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (7969)
Size
7.7 kB (7689 bytes)
Hash
63d2d674e91e07cfa941f5fc1222a942
7ab42d0e153b0c38921790bbb6a5644d0b9356f8
6089acb070bd5c61eaaaa9af96f9e73cc489c1237ee19e977c39de9e98f4f346

HTTP Headers

GET /app/website/js/32949.7c4aa91b5d57a6dfcbd0.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7689
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:54 GMT
x-rgw-object-type: Normal
etag: W/"63d2d674e91e07cfa941f5fc1222a942"
x-amz-request-id: tx00000d48ca2c2e7f43fe0-0065523c7b-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/32949.7c4aa91b5d57a6dfcbd0.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 2074713f44dcd4b16be2131fbde57890
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.141953,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/16526.101b2153816049bd7687.js

151.101.129.46

200 OK

10 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/16526.101b2153816049bd7687.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (17377)
Size
10 kB (10089 bytes)
Hash
26d81a0b8160538a0d6bba06399c71fb
83aaf6cfe6ce7e1c790eff02fe3209c2c1f45ff4
b4314e89bc40559ef7a14e16724355843a5e298b70fde25222d10e16e75f1332

HTTP Headers

GET /app/website/js/16526.101b2153816049bd7687.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 10089
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Oct 2023 15:45:33 GMT
x-rgw-object-type: Normal
etag: W/"26d81a0b8160538a0d6bba06399c71fb"
x-amz-request-id: tx00000f2e4647b9574097a-0065412194-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/16526.101b2153816049bd7687.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 810d8c0336c2a47a049693d2796f35d2741cb496
x-request-id: 5d080d9a65d12c2d3e8c2893d89d044a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1150385
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.143089,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/navigation-mobile.b8f7c7e0b248dd24782b.css

151.101.129.46

200 OK

5.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/navigation-mobile.b8f7c7e0b248dd24782b.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (19021), with no line terminators
Size
5.1 kB (5082 bytes)
Hash
045d0ca72c73e08ccf13bcd6020203c9
e4884f64d4f3605c02086f77a5e75970931e90be
269059ab56ef4eac2303c41dca361262254fece4b0534a3e17c1127b98891f7f

HTTP Headers

GET /app/website/css/navigation-mobile.b8f7c7e0b248dd24782b.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5082
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:53 GMT
x-rgw-object-type: Normal
etag: W/"045d0ca72c73e08ccf13bcd6020203c9"
x-amz-request-id: tx000000a42679e72385b7d-0065523c72-db1a051-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: a1e19bfda9f622a1e010cbcb85b5ed5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.147443,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/navigation-mobile.e750271b767bcdc82d1a.js

151.101.129.46

200 OK

4.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/navigation-mobile.e750271b767bcdc82d1a.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (13578)
Size
4.9 kB (4858 bytes)
Hash
1f0720c6b084192a8898e88f075e2bfd
5961cac046b47f321f22e67536b40a740bd63940
3dd3cef731219786139c4982f0bea5203687e9773ccd738c24f790c186e465d1

HTTP Headers

GET /app/website/js/navigation-mobile.e750271b767bcdc82d1a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4858
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Oct 2023 15:45:33 GMT
x-rgw-object-type: Normal
etag: W/"1f0720c6b084192a8898e88f075e2bfd"
x-amz-request-id: tx00000522248c749287b03-0065412196-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.e750271b767bcdc82d1a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f8d9c2b2668c582be5059cee8158143c25a0516a
x-request-id: 07f0de09d3645295f484d8218e1f6860
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 950788
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 4090
x-timer: S1699917638.155365,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/36018.590feea18d72e356dddf.js

151.101.129.46

200 OK

4.0 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/36018.590feea18d72e356dddf.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (15161)
Size
4.0 kB (3986 bytes)
Hash
9f5e5bb55e22b9918664075d6b925cae
063b1c4baeecfc742bf831ab21ec0a1cbdb46f3a
81cf3f67b63af69096f53b0eddc39dea2bd1049511764512b35a1ff3d9c7a195

HTTP Headers

GET /app/website/js/36018.590feea18d72e356dddf.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3986
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"9f5e5bb55e22b9918664075d6b925cae"
x-amz-request-id: tx00000bf314e02ff2ee72b-006537c81b-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/36018.590feea18d72e356dddf.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: 987feb64aa86e371a8d77949723ff42e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 601573
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.183809,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/96166.f25623fa8c921209fb62.css

151.101.129.46

200 OK

5.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/96166.f25623fa8c921209fb62.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (20652), with no line terminators
Size
5.1 kB (5148 bytes)
Hash
af50f205928834071dd0533b4f7bf1f4
43e4b8ce1a21ec54dc7ba2cbec55dd343dcb52e0
a73b50d69c471ffddf5e7af657fd2b033f0010da15cb6ffa591acdf900707da3

HTTP Headers

GET /app/website/css/96166.f25623fa8c921209fb62.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5148
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"af50f205928834071dd0533b4f7bf1f4"
x-amz-request-id: tx00000ad94b64b4647d1ea-0065406480-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: 7fa96487532465cb61f5b9ab5ebaf2c9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1198789
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.184005,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/cart-1.62bf1ce97aa468a46a93.css

151.101.129.46

200 OK

7.2 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/cart-1.62bf1ce97aa468a46a93.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (26841), with no line terminators
Size
7.2 kB (7237 bytes)
Hash
aa0a9bb4c2f711bd05fb4f926a18c369
22e4a60a783d762da4c6b976cabc27b0f895e3c0
498ee356098a59bc149ea18921a98193d39091706e29ff9ac1366facc2bc7999

HTTP Headers

GET /app/website/css/cart-1.62bf1ce97aa468a46a93.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7237
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"aa0a9bb4c2f711bd05fb4f926a18c369"
x-amz-request-id: tx0000028bc86de3f834340-006537c815-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7c1dfc2e2c8ab08b4abe445ee3e347dc59850f42
x-request-id: 882fcb7f2caae1ca69a852e275a5ce86
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763076
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.192281,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/46217.377ffb96f8dae3823866.js

151.101.129.46

200 OK

16 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/46217.377ffb96f8dae3823866.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (39504)
Size
16 kB (16245 bytes)
Hash
f8a5dd1261e5c10dc50b2f5829db294f
1efd057ae39b9fb46716dc79a1a11276f169596b
8bb1f78dc7edbba6b9947f3e13b3c8f8f9442fab827215d53c93300d4f5986b3

HTTP Headers

GET /app/website/js/46217.377ffb96f8dae3823866.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 16245
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"f8a5dd1261e5c10dc50b2f5829db294f"
x-amz-request-id: tx00000873c5acaf9ea75f0-006537c819-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/46217.377ffb96f8dae3823866.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: c51d878b1fea881ac7ff564572de115f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 584767
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.185883,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/25330.20634d9efe98e6097e3e.js

151.101.129.46

200 OK

3.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/25330.20634d9efe98e6097e3e.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (4156)
Size
3.7 kB (3701 bytes)
Hash
5dfd5b594f0fa1c1fba15f57b6be580f
1ebefa473be4fd4f3e39861f0e7b05021126826b
7c9cf48ac2e76198a496c14dcfc8f110dfb710630922a0cde66f5bf6174c4750

HTTP Headers

GET /app/website/js/25330.20634d9efe98e6097e3e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3701
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 30 May 2023 10:08:18 GMT
x-rgw-object-type: Normal
etag: W/"5dfd5b594f0fa1c1fba15f57b6be580f"
x-amz-request-id: tx0000004484429b7c53689-006475cb9b-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/25330.20634d9efe98e6097e3e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2fc03108d5500477ab424588b2ebabbe038c3bc6
x-request-id: 0d70343550e22714241ebad56b2fd882
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 2414280
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.188546,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/18384.176f66eb588874bb9706.js

151.101.129.46

200 OK

4.6 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/18384.176f66eb588874bb9706.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (7816)
Size
4.6 kB (4592 bytes)
Hash
a2f3814021c877242107012287ed44ee
5b30a16f8420fb4136e9c22b7c31f0438753340a
022220aea8015480080f3575c5c1682be12f4ee8edf783c3c0924e1ee49e2e18

HTTP Headers

GET /app/website/js/18384.176f66eb588874bb9706.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4592
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Oct 2023 17:06:08 GMT
x-rgw-object-type: Normal
etag: W/"a2f3814021c877242107012287ed44ee"
x-amz-request-id: tx00000f0bd629c80385fcf-00653809de-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/18384.176f66eb588874bb9706.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: aeabd029deef5a28c347eaabbef74592c9000aad
x-request-id: 533cae20d1fca4eebc0808439bccdeb4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1746099
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 261
x-timer: S1699917638.192013,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/cart-1.80724f3dfdd7e247d420.js

151.101.129.46

200 OK

34 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/cart-1.80724f3dfdd7e247d420.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (13211)
Size
34 kB (34355 bytes)
Hash
60172efcba65b7fca3bfaeeaf56311c4
f61ac2f6aeb61cd5bf8d690603ad6373c3b56b65
dcd902927aec196385a20503cc84c2ab63ca1792c146b83e218e69681168d170

HTTP Headers

GET /app/website/js/cart-1.80724f3dfdd7e247d420.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 34355
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 09 Nov 2023 17:58:23 GMT
x-rgw-object-type: Normal
etag: W/"60172efcba65b7fca3bfaeeaf56311c4"
x-amz-request-id: tx000005671ae552913847b-00654d1e24-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.80724f3dfdd7e247d420.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 20855b9cd5da93b892aa8a516e13933950ef9f2c
x-request-id: 74309fa0acb2ab6e7cdefe92abef84f1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 364691
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.197979,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/81715.49ceb777839faa5edd46.js

151.101.129.46

200 OK

4.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/81715.49ceb777839faa5edd46.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (10840)
Size
4.9 kB (4913 bytes)
Hash
db8275f5e361657953400d96c587bd7f
f24fdba8c300e1129be7f44e7bdfed3de67c27b0
dd1c477f1c36a767f4ae6be651c7345d37eafcaf9da33287514e8c67be3db086

HTTP Headers

GET /app/website/js/81715.49ceb777839faa5edd46.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4913
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"db8275f5e361657953400d96c587bd7f"
x-amz-request-id: tx000007f12b7884f55b18b-006537c815-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/81715.49ceb777839faa5edd46.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: da60ac2a63b558797da67b7f27ab6101bf9665d8
x-request-id: 205311fda7ccee6e2a6442d79daea438
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763076
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.262395,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/header-8.7250468b20baae6127bc.js

151.101.129.46

200 OK

26 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/header-8.7250468b20baae6127bc.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (19073)
Size
26 kB (26376 bytes)
Hash
d689aa622fc5dc2f573d11c7e194f7c7
4c3ecfe207e2ca32b00ef220d0bd11930e849faf
b80e379b1910a346fe3ab386fd81537e57a5b25ab8d6389791433b720c056d4a

HTTP Headers

GET /app/website/js/header-8.7250468b20baae6127bc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 26376
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:55 GMT
x-rgw-object-type: Normal
etag: W/"d689aa622fc5dc2f573d11c7e194f7c7"
x-amz-request-id: tx00000eaedc04b1223b9ca-0065523ce1-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-8.7250468b20baae6127bc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 230fb97b64c9ddd98dccc80440d3be02
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29209
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.281941,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/87697.74d8d6c3a59a34e861b7.js

151.101.129.46

200 OK

1.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/87697.74d8d6c3a59a34e861b7.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (4129)
Size
1.8 kB (1817 bytes)
Hash
968dc755f854e6189e81104e4ac2d541
cc6d60b0d67474d564c859de1c0a8cef14a714e2
29f7d06e0b00ed26a71bf5f9b5dfd55e8062fba5aebc27e6693ee21ec6f364d2

HTTP Headers

GET /app/website/js/87697.74d8d6c3a59a34e861b7.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1817
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Jun 2023 17:03:41 GMT
x-rgw-object-type: Normal
etag: W/"968dc755f854e6189e81104e4ac2d541"
x-amz-request-id: tx000000736e906af1df86d-0064f5e1f9-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/87697.74d8d6c3a59a34e861b7.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2fc03108d5500477ab424588b2ebabbe038c3bc6
x-request-id: d9bd0333d472ee194c0815a8ea5466ae
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 2409248
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.314277,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/86141.c2a52b0f7ec89f22b41b.js

151.101.129.46

200 OK

3.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/86141.c2a52b0f7ec89f22b41b.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (8870)
Size
3.9 kB (3876 bytes)
Hash
07707320d1cd4f7a9e3856b93b61b49f
2d5c7eb3d7bc4c34a953c83a6c1e46114faf2148
0dd738fb3bf792032a9b8f40c2363cb63fcb3590c5d8cbc41f6d3351dcc3de04

HTTP Headers

GET /app/website/js/86141.c2a52b0f7ec89f22b41b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3876
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 27 Oct 2023 16:03:18 GMT
x-rgw-object-type: Normal
etag: W/"07707320d1cd4f7a9e3856b93b61b49f"
x-amz-request-id: tx000005d80c25e6aaff152-00653bdfae-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/86141.c2a52b0f7ec89f22b41b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: e84958855073ccffebadf48450933f70
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1211230
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.315706,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/50075.036aa3207fb7f7a4c4cc.css

151.101.129.46

200 OK

3.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/50075.036aa3207fb7f7a4c4cc.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (19548), with no line terminators
Size
3.8 kB (3769 bytes)
Hash
e85660dbcde27a8abb0e5a84ec057e73
c4d25b982fa374928e6546b20274e559c7c836ba
737e24ccb06c2a53fe2a1271bfb7854da37e511a76a08a0ca5dfbef510be7ba9

HTTP Headers

GET /app/website/css/50075.036aa3207fb7f7a4c4cc.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3769
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"e85660dbcde27a8abb0e5a84ec057e73"
x-amz-request-id: tx00000e3d715e5ec6480ad-006537c814-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7c1dfc2e2c8ab08b4abe445ee3e347dc59850f42
x-request-id: f694fe2d7f367b8db2f6e50e40d22e5b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763054
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.317870,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/50075.5785010b45b83e901526.js

151.101.129.46

200 OK

41 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/50075.5785010b45b83e901526.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
41 kB (40935 bytes)
Hash
4c9246a55af0ec1c5e5828b2f473d184
653d8c8c107e0c62bf8adb3667a9806515ab7a20
a9052762282e65dcc19f0810d88d34d6b118541e0152e438284694c9860071b9

HTTP Headers

GET /app/website/js/50075.5785010b45b83e901526.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 40935
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"4c9246a55af0ec1c5e5828b2f473d184"
x-amz-request-id: tx000000ceb8248bfbf115b-006537c817-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/50075.5785010b45b83e901526.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7c1dfc2e2c8ab08b4abe445ee3e347dc59850f42
x-request-id: 47dd9403f077e34a8b6de5e67a2b94d1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763054
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.319173,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/68206.990eedf59c8976876669.js

151.101.129.46

200 OK

4.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/68206.990eedf59c8976876669.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (7246)
Size
4.1 kB (4125 bytes)
Hash
14d20999167f6b6e995e2f0112fa54aa
c264cbe818a7ff825c3e3e5371f2e33be35dc0c2
3e3c73a888e52072b682aef8fd62e3e7b93a46c563d4af075d4e97b453b9b1c6

HTTP Headers

GET /app/website/js/68206.990eedf59c8976876669.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4125
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 27 Oct 2023 16:03:18 GMT
x-rgw-object-type: Normal
etag: W/"14d20999167f6b6e995e2f0112fa54aa"
x-amz-request-id: tx00000860dc5614bfe0615-00653bdfb7-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/68206.990eedf59c8976876669.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a645ec98d4815058b7c6d1b58971ae95335f411b
x-request-id: 7164933e2cf8c1ae8c8ddcc30ac5d3b0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1494872
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.320827,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/banner-1.4c689381d09d146a8db4.css

151.101.129.46

200 OK

3.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/banner-1.4c689381d09d146a8db4.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (15199), with no line terminators
Size
3.9 kB (3868 bytes)
Hash
6e35a6c1a0d90d5d64dce180cc8b751b
bb9421f89de9ebd36caf1c4a3e245f87d787dcc0
521b1ca4c57a11bd4c894e38e000cbc22782a20c048829e729572c9bb96ee0c5

HTTP Headers

GET /app/website/css/banner-1.4c689381d09d146a8db4.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3868
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"6e35a6c1a0d90d5d64dce180cc8b751b"
x-amz-request-id: tx00000299b9682a4fef732-006537c815-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: da60ac2a63b558797da67b7f27ab6101bf9665d8
x-request-id: 4dde9bf9d1b64f7f43e35ffde5ea8680
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763054
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.331197,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/40996.a1de09cfd1e9946ce6ec.css

151.101.129.46

200 OK

7.2 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/40996.a1de09cfd1e9946ce6ec.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (29585), with no line terminators
Size
7.2 kB (7241 bytes)
Hash
427b87b4fb4b05f213e4c1eb6011b385
0fc914204a96e3cefeb41fd5b5bc2e3f8b202c4e
dc9b9f7d40aeeebb41c1db8d99f1877ef6df1a9a84d8b04d0e0a4fc872f6669b

HTTP Headers

GET /app/website/css/40996.a1de09cfd1e9946ce6ec.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7241
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:52 GMT
x-rgw-object-type: Normal
etag: W/"427b87b4fb4b05f213e4c1eb6011b385"
x-amz-request-id: tx00000e484d3e586d76d60-0065523c7c-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 290b3b9b91f46a51de23fc927a8102cf
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.334683,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/4020.a473821acb7d7b794bb0.js

151.101.129.46

200 OK

21 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/4020.a473821acb7d7b794bb0.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
21 kB (21448 bytes)
Hash
605570a3323d8ada6cda58359a0c4202
1404f6897557761c9fb11e73c87a47bcfe03af3b
bef793c33c0df5d5bcb1bf481eea1f45637422977d9545f494e68aba87330805

HTTP Headers

GET /app/website/js/4020.a473821acb7d7b794bb0.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 21448
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:54 GMT
x-rgw-object-type: Normal
etag: W/"605570a3323d8ada6cda58359a0c4202"
x-amz-request-id: tx00000c679dfabbcb2c625-0065523c74-db1a099-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/4020.a473821acb7d7b794bb0.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: ee243b66d8012c93345a36e103327abe
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.321121,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/75876.6243f3bbebbd8642de6b.js

151.101.129.46

200 OK

5.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/75876.6243f3bbebbd8642de6b.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (14216)
Size
5.7 kB (5677 bytes)
Hash
fd284dad2a14c442e2df6820aea4be5d
a2408eff33d42fcd8fbe66e3bd7e2545ebaebecc
99d1a685990a310268b1953cd00b4d56e3cc5f5dd47646a77bffbd88ae5e797f

HTTP Headers

GET /app/website/js/75876.6243f3bbebbd8642de6b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5677
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 18:10:19 GMT
x-rgw-object-type: Normal
etag: W/"fd284dad2a14c442e2df6820aea4be5d"
x-amz-request-id: tx0000003ccfc0c7e3b86a9-00655266f0-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/75876.6243f3bbebbd8642de6b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d421631698b2ab08f3833cddd86a0ae9d61b07ae
x-request-id: 76dbffe7d75e8becd435f51d480157c6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 18315
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.322648,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/86276.6e20dce5d4cae2bea300.js

151.101.129.46

200 OK

4.3 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/86276.6e20dce5d4cae2bea300.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (8649)
Size
4.3 kB (4287 bytes)
Hash
71155b39d1496c2b0155b9422a28e276
73f8be55b1174b1aad46ae8542a110d9d210599e
a531a35bfb2aa46e203ebe7a10d78d52b9572880bfbd4cf4a9d541b91ec99c9c

HTTP Headers

GET /app/website/js/86276.6e20dce5d4cae2bea300.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4287
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 10 Oct 2023 16:02:01 GMT
x-rgw-object-type: Normal
etag: W/"71155b39d1496c2b0155b9422a28e276"
x-amz-request-id: tx00000cb119d50b69b0b8d-00652575e9-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/86276.6e20dce5d4cae2bea300.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: b8ccffa74b565a6e6f8d22b9876d108e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 598978
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.327744,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/11775.0289efd8be2977d09a8d.js

151.101.129.46

200 OK

8.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/11775.0289efd8be2977d09a8d.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (23800)
Size
8.9 kB (8904 bytes)
Hash
113cfde3fe0ed0b4d69f31e6ae9cd210
fe6f3303cd35954a74008308600a679a06834fd4
b69684ec5ad39957b097126cc7e27279b30c1cdf3e7e6b9f1da3c0f387eb63dd

HTTP Headers

GET /app/website/js/11775.0289efd8be2977d09a8d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 8904
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Oct 2023 23:22:52 GMT
x-rgw-object-type: Normal
etag: W/"113cfde3fe0ed0b4d69f31e6ae9cd210"
x-amz-request-id: tx000009f4c056d72c30917-0065418cb8-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/11775.0289efd8be2977d09a8d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: cf81891ba54ea6acff3a210b54479397
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 598978
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.330577,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/banner-1.673cdaf0b18d11def0fa.js

151.101.129.46

200 OK

4.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/banner-1.673cdaf0b18d11def0fa.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (10662)
Size
4.7 kB (4673 bytes)
Hash
4dc9771250b85514be1a760d1546a38a
ea29f781b894db4aaa5985df9361ca8850ed7012
b1688774874b23ea21f34644238147ea6cf3b325c8a94a8016ab9cdcdd9d703a

HTTP Headers

GET /app/website/js/banner-1.673cdaf0b18d11def0fa.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4673
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 29 Sep 2023 15:36:38 GMT
x-rgw-object-type: Normal
etag: W/"4dc9771250b85514be1a760d1546a38a"
x-amz-request-id: tx00000a072b34792e81aef-006516ef7b-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/banner-1.673cdaf0b18d11def0fa.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: a543380e39428194fdd91984f6a39825
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 580906
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.331187,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css

151.101.129.46

200 OK

239 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (622), with no line terminators
Size
239 B (239 bytes)
Hash
e0475a260378e42162f0605e782bc9ff
5dd67892cd8f5c1a1fdca46f6154ebbd42d3e870
0be3aac1ef8c956a6e70da2a16f02e500068a7928a842aac7d3993b8d2802aa6

HTTP Headers

GET /app/website/css/footer-7.7d9df2bbcb508697998e.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 239
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 09 Dec 2021 21:01:03 GMT
x-rgw-object-type: Normal
etag: W/"e0475a260378e42162f0605e782bc9ff"
x-amz-request-id: tx00000927c53e176df057b-0065405385-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: adefaf7931e24da050192f80c814709d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1196640
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354780,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css

151.101.129.46

200 OK

351 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (626), with no line terminators
Size
351 B (351 bytes)
Hash
607e0fd2b514ffdc06c62b1eb1bc428b
9813c79ecc25a39fb2001780bd2a89a41f589be0
0e4c81150634a1580473d241b3d8d425776793cd1c3931c1d879065f63b88c8f

HTTP Headers

GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 351
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000e54e6facebd58c5a-00650a9c31-db1a099-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7ae81951df718b1026188d885ba9e3e6c8144748
x-request-id: 79a1ad2f61d6d1132c07c9e1341435cb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 4233361
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354736,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/15422.11f3a8ff7a9bd0ef34e5.js

151.101.129.46

200 OK

8.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/15422.11f3a8ff7a9bd0ef34e5.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (12275)
Size
8.7 kB (8684 bytes)
Hash
a5898ed852bbdb103dfd167ef215bb4a
951025246039bed6cca19e770763a41f0b97ec5d
6a36da35ea3076137ce5921dcf55574227ba022bec2d2b109b7a06d98ce8db37

HTTP Headers

GET /app/website/js/15422.11f3a8ff7a9bd0ef34e5.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 8684
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:27 GMT
x-rgw-object-type: Normal
etag: W/"a5898ed852bbdb103dfd167ef215bb4a"
x-amz-request-id: tx000000f052940fb9a80d8-006537c813-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/15422.11f3a8ff7a9bd0ef34e5.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5a809548df84acc103c914effea415e297134e0
x-request-id: 4cd48fc3cc91b2034ce8c81819015ae1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1119279
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.332396,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/6156.15e13a5c247a9ba7b27c.js

151.101.129.46

200 OK

9.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/6156.15e13a5c247a9ba7b27c.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (14455)
Size
9.7 kB (9707 bytes)
Hash
d33ea0ee62ab57be3f1eba23126f9925
b2af831fcd0e4fb4e92bac60c64cd21b6d28de54
02fb1666b52b9f8de83829ca8b563de6e2a5990668706db7ad51ceaa0ada2a0b

HTTP Headers

GET /app/website/js/6156.15e13a5c247a9ba7b27c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 9707
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 26 Oct 2023 18:20:00 GMT
x-rgw-object-type: Normal
etag: W/"d33ea0ee62ab57be3f1eba23126f9925"
x-amz-request-id: tx00000d5172fdd76359997-00653aae46-db1a099-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/6156.15e13a5c247a9ba7b27c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: 9a8fc021609945d2d7f628ae2c051360
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1194866
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.332813,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/2170.5a16bfd235351842997b.js

151.101.129.46

200 OK

16 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/2170.5a16bfd235351842997b.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (25746)
Size
16 kB (15847 bytes)
Hash
7667988cd90ba5bcb9c4352468815def
3927f40fe6a87e2410d5283eb7b603046c0facb8
a0dd66db41efd44d91dae9742c7e96dc6d0eacf14bf85df47b602a04c5dcf229

HTTP Headers

GET /app/website/js/2170.5a16bfd235351842997b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 15847
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 19 Oct 2023 20:42:08 GMT
x-rgw-object-type: Normal
etag: W/"7667988cd90ba5bcb9c4352468815def"
x-amz-request-id: tx00000546d89f37542d815-0065319522-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/2170.5a16bfd235351842997b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: 1efa67086c4b2ccdd475a2c140554ea5
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1206385
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.334710,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/header-8.1122e3b8d4fb62bcda68.css

151.101.129.46

200 OK

6.5 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/header-8.1122e3b8d4fb62bcda68.css
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Unicode text, UTF-8 text, with very long lines (25190), with no line terminators
Size
6.5 kB (6521 bytes)
Hash
2195804c2ed3a73eee80188f4bbc9286
c25b02602e986d0fb05087f9be3a0cdbe7d4b841
706eb0b830ce470ff09f67156d948615a4a7377626b81a727c3bf38611463436

HTTP Headers

GET /app/website/css/header-8.1122e3b8d4fb62bcda68.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 6521
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:53 GMT
x-rgw-object-type: Normal
etag: W/"2195804c2ed3a73eee80188f4bbc9286"
x-amz-request-id: tx00000f994075ae4918371-0065523d6c-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
x-request-id: fbd2f22e9b901dfd01c059d743920ecd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1699917638.278293,VS0,VE169
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/40996.df17b7f82338ced7daf3.js

151.101.129.46

200 OK

12 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/40996.df17b7f82338ced7daf3.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (14274)
Size
12 kB (12044 bytes)
Hash
d2a8ceb757ce674d07a2a88c0dcee005
1f3d6d276f75f786eb0178d13f0c135d1db85998
a622f8be3e05f21bb4f2b1324f7a9a65856bd13ea27fc539f57a88c97a4e239b

HTTP Headers

GET /app/website/js/40996.df17b7f82338ced7daf3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 12044
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:54 GMT
x-rgw-object-type: Normal
etag: W/"d2a8ceb757ce674d07a2a88c0dcee005"
x-amz-request-id: tx00000b478974060448073-0065523c75-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/40996.df17b7f82338ced7daf3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: fcf681bae0a5c0ea1907d24784e65d52
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.354806,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/footer-7.e30a432469d934ca499b.js

151.101.129.46

200 OK

1.3 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/footer-7.e30a432469d934ca499b.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (4863)
Size
1.3 kB (1291 bytes)
Hash
3e380f78436f68aad2554ddef8844791
c9aae5d5a61610c15822dc536564e05fe99abd4f
9795be59924720e67b8415cce541774714c209017c51c726136d6115b27afac9

HTTP Headers

GET /app/website/js/footer-7.e30a432469d934ca499b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1291
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Oct 2023 17:06:09 GMT
x-rgw-object-type: Normal
etag: W/"3e380f78436f68aad2554ddef8844791"
x-amz-request-id: tx000007194c2b9f4a73483-00651c4a77-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-7.e30a432469d934ca499b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2fc03108d5500477ab424588b2ebabbe038c3bc6
x-request-id: dbe41374ff5671c9486a485f9d7f73f9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 2418364
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354748,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/free-footer.981302e127bb56732a3e.js

151.101.129.46

200 OK

3.3 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/free-footer.981302e127bb56732a3e.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (7578)
Size
3.3 kB (3281 bytes)
Hash
8b7c1d42f663c59c0cc2900a81681b8f
c00a0cac40debc6c3ae16e8cd444ee8d98644041
ca4b8a9ff5029e262e97f0b2ade8ee754282cd3250ca7f5509d27769a7d98eea

HTTP Headers

GET /app/website/js/free-footer.981302e127bb56732a3e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3281
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 04 Oct 2023 04:24:10 GMT
x-rgw-object-type: Normal
etag: W/"8b7c1d42f663c59c0cc2900a81681b8f"
x-amz-request-id: tx00000d28b3c109bff36b8-00651ce953-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.981302e127bb56732a3e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: c31f2297161b4862a8932f623aea7ae7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 594447
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354722,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff

151.101.129.46

200 OK

41 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Web Open Font Format, TrueType, length 41400, version 1.0\012- data
Size
41 kB (41400 bytes)
Hash
ade801c572e692ed6abe4213896eccc8
82a61609a657857d3a2b2a4e12d7db9546221f22
f321df4af5ea5d9ad9d0840c3f6b332567584620efedd1fade186123abc7479e

HTTP Headers

GET /app/website/static/fonts/Square%20Market/sqmarket-medium.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 41400
server: nginx
content-type: font/woff
last-modified: Tue, 15 Sep 2020 17:37:49 GMT
x-rgw-object-type: Normal
etag: "ade801c572e692ed6abe4213896eccc8"
x-amz-request-id: tx00000315f6fbb1bc3b2fe-00654b3b50-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7124b4dadfde01daf9340bde27ef95d505977a12
x-request-id: 34daeca5a3163af5147eb7729a7a35a5
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 236647
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917638.355116,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=f3969455-4a13-403c-9f25-7328d05b1053&batch_time=1699917637912

3.233.153.145

202 Accepted

53 B

URL POST HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=f3969455-4a13-403c-9f25-7328d05b1053&batch_time=1699917637912
IP
3.233.153.145:443
ASN
#14618 AMAZON-AES

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
ba57329307c09aaab397f3dd3132cff9
a7c69cecf66a25423f107276414a8b7052d7a491
17a504a9a78b1ec1e561e63be29251a95653808ebfcbcda15d8bbb18d7f9aea3

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=f3969455-4a13-403c-9f25-7328d05b1053&batch_time=1699917637912 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15775
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 202 Accepted
date: Mon, 13 Nov 2023 23:20:38 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-regular.woff

151.101.129.46

200 OK

39 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-regular.woff
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Web Open Font Format, TrueType, length 39020, version 1.0\012- data
Size
39 kB (39020 bytes)
Hash
6d82eada1d3af65a01d7a535b15ed1cc
b473e899cde33d7f903c754729ee41b46229a1e7
5e094fc97ee2575583299cc73a332e742c43a80e5fefeb3579fe3c5108c535f7

HTTP Headers

GET /app/website/static/fonts/Square%20Market/sqmarket-regular.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 39020
server: nginx
content-type: font/woff
last-modified: Mon, 16 Sep 2019 15:04:20 GMT
x-rgw-object-type: Normal
etag: "6d82eada1d3af65a01d7a535b15ed1cc"
x-amz-request-id: tx000001f6e30c978d198a2-006549773d-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: 60d2bd118731c9808c2ba6b7b7453a52
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 604169
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917638.356400,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff

151.101.129.46

200 OK

41 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Web Open Font Format, TrueType, length 41400, version 1.0\012- data
Size
41 kB (41400 bytes)
Hash
ade801c572e692ed6abe4213896eccc8
82a61609a657857d3a2b2a4e12d7db9546221f22
f321df4af5ea5d9ad9d0840c3f6b332567584620efedd1fade186123abc7479e

HTTP Headers

GET /app/website/static/fonts/Square%20Market/sqmarket-medium.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 41400
server: nginx
content-type: font/woff
last-modified: Tue, 15 Sep 2020 17:37:49 GMT
x-rgw-object-type: Normal
etag: "ade801c572e692ed6abe4213896eccc8"
x-amz-request-id: tx00000315f6fbb1bc3b2fe-00654b3b50-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7124b4dadfde01daf9340bde27ef95d505977a12
x-request-id: 34daeca5a3163af5147eb7729a7a35a5
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 236647
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.356371,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

bt-103993.square.site/app/website/static/icons/sets/square/close.svg

199.34.228.40

200 OK

235 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 206601707564872077
x-datadog-sampling-priority: 1
x-datadog-trace-id: 8969693914538900860
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000f622517d35a29562-0064386db8-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu138.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 401af88bc1a90f9391c2726220c8e94c

bt-103993.square.site/app/website/static/icons/sets/square/search.svg

199.34.228.40

200 OK

253 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/search.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
253 B (253 bytes)
Hash
006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 8606198523662550176
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4131523417732692982
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx00000cae76eaa948a9d66-0064386dbc-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu127.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 9685cc381a4698301370391a9c20489f

bt-103993.square.site/app/website/static/icons/sets/square/close.svg

199.34.228.40

200 OK

235 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 3953613470475019472
x-datadog-sampling-priority: 1
x-datadog-trace-id: 9070624367545022668
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000fbaec5762f948c0d-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: fd47f74bad93090306e96ef49e61c220

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=bf0080a1-1abb-40ed-aeac-6f66b5912eb3&batch_time=1699917638437

3.233.153.145

202 Accepted

53 B

URL POST HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=bf0080a1-1abb-40ed-aeac-6f66b5912eb3&batch_time=1699917638437
IP
3.233.153.145:443
ASN
#14618 AMAZON-AES

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
8532d3fb5f2e105f788c0cdaacc481de
e4b64cc6b53a72091f3da43a0a5a45b288c39a69
cb0051d5dc93f88dbdec244b7264312dabc49c6e4ec80cb54266d07302a5a2fd

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=bf0080a1-1abb-40ed-aeac-6f66b5912eb3&batch_time=1699917638437 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15721
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 202 Accepted
date: Mon, 13 Nov 2023 23:20:38 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

bt-103993.square.site/app/website/static/icons/sets/square/spinner.svg

199.34.228.40

200 OK

205 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/spinner.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
205 B (205 bytes)
Hash
b7b85a7b3f5575bcae909da71b04d588
86442aaf9a428a95cd7b00bd52c875618c4f9cdc
a6f7da657d6f069d0ee93cabff70a26c73d180090ba83df879aed55944a92066

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/spinner.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 1454426736347705332
x-datadog-sampling-priority: 1
x-datadog-trace-id: 5197170935928899762
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 205
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "b7b85a7b3f5575bcae909da71b04d588"
x-amz-request-id: tx0000006863c8813c75fa7-0064386db9-d955bdc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: e2a54872d6de3d3d76934c3042712f82

bt-103993.square.site/app/website/static/icons/sets/square/close.svg

199.34.228.40

200 OK

235 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 7405295505779044519
x-datadog-sampling-priority: 1
x-datadog-trace-id: 8750279407800532329
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000fbaec5762f948c0d-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu82.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 7fca3ad375b46546e9dc9e136819f5ad

bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]&cache-version=2023-11-13

199.34.228.40

200 OK

182 B

URL POST HTTP/1.1
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]&cache-version=2023-11-13
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
182 B (182 bytes)
Hash
6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 7297478444241123933
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4067568164873525292
Content-Length: 89
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:38 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn10.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]&cache-version=2023-11-13

199.34.228.40

200 OK

79 B

URL POST HTTP/1.1
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]&cache-version=2023-11-13
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
79 B (79 bytes)
Hash
26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 5194156688686318852
x-datadog-sampling-priority: 1
x-datadog-trace-id: 6899835289975252221
Content-Length: 77
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:38 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu149.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

bt-103993.square.site/app/website/static/icons/sets/square/search.svg

199.34.228.40

200 OK

253 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/search.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
253 B (253 bytes)
Hash
006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 7185269829625810372
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4676885789834270128
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx000004ba0b82b1ab49199-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 35649ee82a00e7f463496f923c2ebad6

bt-103993.square.site/app/website/static/icons/sets/square/search.svg

199.34.228.40

200 OK

253 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/search.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
253 B (253 bytes)
Hash
006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 8557325591580541183
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4412003415082381084
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx000004ba0b82b1ab49199-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: d1671864acbc4b21f9b5e78da4646cc0

bt-103993.square.site/app/website/static/icons/sets/square/close.svg

199.34.228.40

200 OK

235 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 416553111689043370
x-datadog-sampling-priority: 1
x-datadog-trace-id: 7461718835173001481
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000f622517d35a29562-0064386db8-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu82.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: b8fee3626f9b771b5c4bb25ebb14d85b

bt-103993.square.site/app/website/static/icons/sets/square/close.svg

199.34.228.40

200 OK

235 B

URL GET HTTP/1.1
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 5825482502596684288
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4574755090710811105
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000f622517d35a29562-0064386db8-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn147.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 7cec226a30d4fbdf4cdd8d3233cb0efb

cbeac1191a3179ab82b9.cdn6.editmysite.com/uploads/b/cbeac1191a3179ab82b962445c20f2fe478607a29764c52ea8d695016f795ddf/HEHEHEKJ_1669724200.png?width=400&optimize=medium

151.101.129.46

200 OK

13 kB

URL GET HTTP/3
cbeac1191a3179ab82b9.cdn6.editmysite.com/uploads/b/cbeac1191a3179ab82b962445c20f2fe478607a29764c52ea8d695016f795ddf/HEHEHEKJ_1669724200.png?width=400&optimize=medium
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
13 kB (12886 bytes)
Hash
c8e8f13655660c51a3800b53f9b7b973
9f2d99f6058a839683602cb9a91bb5917ddfda78
c674ad1fe09d3b477dccdbd41b968ce9bb38552b4b9fd85a664a406f26a6b252

HTTP Headers

GET /uploads/b/cbeac1191a3179ab82b962445c20f2fe478607a29764c52ea8d695016f795ddf/HEHEHEKJ_1669724200.png?width=400&optimize=medium HTTP/1.1
Host: cbeac1191a3179ab82b9.cdn6.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 12886
access-control-allow-headers: Origin, Authorization, Content-Type
access-control-allow-methods: GET, POST, DELETE, OPTIONS
access-control-allow-origin: *
content-type: image/webp
etag: "uAgC2jPD2TwEVvy1uIufWCY2dBgC+PTZbxTZFIE2wc8"
fastly-io-info: ifsz=61025 idim=1200x1200 ifmt=png ofsz=12886 odim=400x400 ofmt=webp
fastly-io-served-by: vpop-haf2300710
fastly-stats: io=1
server: nginx
x-amz-request-id: tx00000b0d3a2646949211e-0065516bf6-db1c67d-sfo1
x-rgw-object-type: Normal
x-storage-bucket: zb07c
x-storage-object: b07cf5be8ea3f83fe1cbd1c8eaa4193a677dcdc2fcf945c27e54dc7bbcd52975
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:39 GMT
age: 0
x-served-by: cache-sjc1000114-SJC, cache-bma1636-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1699917639.887379,VS0,VE222
vary: Accept
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=1bda4a3b-0af2-4ff1-9af5-537d84e29761&batch_time=1699917638959

3.233.153.145

202 Accepted

53 B

URL POST HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=1bda4a3b-0af2-4ff1-9af5-537d84e29761&batch_time=1699917638959
IP
3.233.153.145:443
ASN
#14618 AMAZON-AES

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
e2878f6c55fd74d37f54ff3afd3113b8
7bcd140e5120cc952a0606027294727244878e49
4b458ed992ce4e68a82de9873149f89a4bf555747fe44809de5903901acfc3d0

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=1bda4a3b-0af2-4ff1-9af5-537d84e29761&batch_time=1699917638959 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15416
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 202 Accepted
date: Mon, 13 Nov 2023 23:20:39 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

bt-103993.square.site/app/website/square.ico

199.34.228.40

200 OK

6.5 kB

URL GET HTTP/1.1
bt-103993.square.site/app/website/square.ico
IP
199.34.228.40:443
ASN
#27647 WEEBLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
6.5 kB (6518 bytes)
Hash
d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BT Group plc
PhishTank	phishing	Other

HTTP Headers

GET /app/website/square.ico HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:39 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a88764-00628473fc-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn147.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: beef3d0bf493d052ce85d2b6ddd18ed6

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.129.46

200 OK

75 kB

URL GET HTTP/2
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (2512)
Size
75 kB (75006 bytes)
Hash
99bbe560926e583b8e99036251deb783
8d81b73ae06f664f9d9e53dd5829a799bf434491
648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 00:38:34 GMT
etag: "654ad88a-124fe"
expires: Thu, 23 Nov 2023 08:49:33 GMT
cache-control: max-age=1209600
x-host: grn97.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
age: 397862
x-served-by: cache-sjc10061-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 3452
x-timer: S1699917636.638411,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25752
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/63457.bce4a6a1251098674eaa.js

151.101.129.46

200 OK

12 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/63457.bce4a6a1251098674eaa.js
IP
151.101.129.46:443
ASN
#54113 FASTLY

Requested by
https://bt-103993.square.site/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (9846)
Size
12 kB (12323 bytes)
Hash
56c5093da46fcb48b92d649fffe59a63
0724c53948b2cc96900e9d7b03702a0b72457321
16b5dd1aed1d8e5f0721095c33a7574c682b341d3b09b0455e0085b972037d2e

HTTP Headers

GET /app/website/js/63457.bce4a6a1251098674eaa.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 5365
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 26 Oct 2023 18:20:00 GMT
x-rgw-object-type: Normal
etag: W/"56c5093da46fcb48b92d649fffe59a63"
x-amz-request-id: tx000007a2f9f30303b9b18-00653aae41-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63457.bce4a6a1251098674eaa.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d0c8ccc78f85d08c2ce83c141bc5679678205587
x-request-id: 51effe3a7b0cb4c75c25f19c724a10e8
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1573039
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.134962,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash