199.34.228.40200 OK 10 kB URL User Request GET HTTP/1.1 IP 199.34.228.40:443
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21320)
Hash ffdb94c42c46bae5797b2c3615af03a5
311c22eec8edf7ac72b05e7d484beca7caf88c78
52f2ab1f12f3cf8577d0b7f1ffbe1aba911ef77b0de4f56ff69c71aa5d252633
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET / HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 13 Nov 2023 23:20:34 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:35 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:35 GMT; Max-Age=1209600; path=/; samesite=lax
PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:35 GMT; Max-Age=1209600; path=/; httponly; samesite=lax
X-Host: blu84.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 8e60918947036cd40733e39ee6885391
Content-Encoding: gzip
cdn3.editmysite.com/app/website/css/site.158cdc91c614089e553c.css
151.101.129.46200 OK 39 kB URL GET HTTP/2 cdn3.editmysite.com/app/website/css/site.158cdc91c614089e553c.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (64948), with no line terminators
Hash c14ae1ece497664718f42b890f455933
589ee3baed2136e20c87ccbdf5a668659d1b9117
a44f0f71ff55c33154268df6815f30ca7cd1db0a1c2b2c9c7b9d1ead77e19fc9
GET /app/website/css/site.158cdc91c614089e553c.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 18:10:19 GMT
x-rgw-object-type: Normal
etag: W/"c14ae1ece497664718f42b890f455933"
x-amz-request-id: tx00000f70dc16ff3fa09ec-00655266f0-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d421631698b2ab08f3833cddd86a0ae9d61b07ae
x-request-id: 7bd5c986df51834b44d4259d18459e58
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 18328
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917636.627255,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 39047
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.31d6cfe0d16ae931b73c.css
151.101.129.46200 OK 0 B URL GET HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.31d6cfe0d16ae931b73c.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/checkout/assets/checkout/css/wcko.31d6cfe0d16ae931b73c.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 31 Oct 2023 14:45:11 GMT
etag: "654112f7-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 1152174
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917636.627916,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 0
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.js
151.101.129.46200 OK 5.1 kB URL GET HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/js/system.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (12165)
Hash a7492af09b397dae7164c97ee2d4482d
fd33d97b8e2581b90521c871926a1c081b9f2158
099183900da1f3584590a1506bd27e8d07ef58380e03140f18c71f09c9216703
GET /app/checkout/assets/checkout/js/system.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 13 Jul 2023 19:54:24 GMT
x-rgw-object-type: Normal
etag: W/"a7492af09b397dae7164c97ee2d4482d"
x-amz-request-id: tx000007dae49fc043f2000-0064b05685-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 1207146
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 33
x-timer: S1699917636.629414,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5122
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/runtime.02949c48a15605337fbd.js
151.101.129.46200 OK 30 kB URL GET HTTP/2 cdn3.editmysite.com/app/website/js/runtime.02949c48a15605337fbd.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (55907)
Hash 569081963afd84e02ad7c322f2af601a
2e75b56cd80b747b84d44329ee7606681121c294
f7cf65002ae1db8d44ea9d5fe174a98f228e9454dae4bad7549bb5f96fc78330
GET /app/website/js/runtime.02949c48a15605337fbd.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 20:27:43 GMT
x-rgw-object-type: Normal
etag: W/"569081963afd84e02ad7c322f2af601a"
x-amz-request-id: tx000000836dc2972852a92-006552871c-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.02949c48a15605337fbd.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 0b7139eb81b01817480a89039992f865c8612c3c
x-request-id: 02a117850bbd60719c5c6588ca0b3b13
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 10269
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 8
x-timer: S1699917636.632953,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29487
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js
151.101.129.46200 OK 72 kB URL GET HTTP/2 cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (27360)
Hash 0af09f4e4586891f0f33944d01827790
786b780c119a813fe22368b3648a27bbb67090b6
fee99a78d692363c984633ef6e8239bc7ac711e0bfdde6d0eeb1e62f3c5025bc
GET /app/website/js/vue-modules.59964f34ec7130d2b996.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:17 GMT
x-rgw-object-type: Normal
etag: W/"0af09f4e4586891f0f33944d01827790"
x-amz-request-id: tx00000ba9ca7fc9b41d2bd-0064700cb3-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.59964f34ec7130d2b996.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 240e69a2b8e4862fb54a418282b618a944d8909e
x-request-id: 932b1b77fe8b6cfb8e4935f487245118
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 4140899
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 12
x-timer: S1699917636.634621,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 72167
X-Firefox-Spdy: h2
bt-103993.weeblysite.com/
162.159.140.60302 Found 26 kB URL User Request GET HTTP/2 bt-103993.weeblysite.com/
IP 162.159.140.60:443
Certificate IssuerCloudflare, Inc.
Subjectweeblysite.com
FingerprintB1:46:C7:51:E8:C2:74:1A:AE:4E:AD:99:BF:5E:02:6E:F0:83:81:EF
ValidityFri, 29 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
Hash f3a665dd6db02c7964e8a351a6c9ff97
6b89708b0ee30320610938a8ab3b1e13f2fe2759
834019ee50a0aaba48d2fffc797199a22341b5f45fe900d15d3fbd073e02683d
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET / HTTP/1.1
Host: bt-103993.weeblysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 13 Nov 2023 23:20:34 GMT
content-type: text/html; charset=UTF-8
location: https://bt-103993.square.site/
cf-ray: 825abef9ac9456c6-OSL
cf-cache-status: DYNAMIC
cache-control: no-cache, private
x-host: grn64.sf2p.intern.weebly.net
x-request-id: e03ab4d0b09b8ccbb99b1db37cc3a512
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
set-cookie: publishedsite-xsrf=eyJpdiI6ImttRU5abWhMNy80NzJPWXpIMHVYVlE9PSIsInZhbHVlIjoiN2tjMUhXbmZKRU9UUkl3clJMRE5BNlpoUTNRdFdmaDZ2dTR2TjVBd282YUJHS1BURGtaMlc0WHNNVEtNYUM1VDlOc3d2cmp4Wm1NenFCa25YVk85WXlicHlNdE9SeE5JZkwzdmNYdmhJN05lU1ZVbVVIc0gvRlpPeEdiZEpSb3giLCJtYWMiOiJkYjhhOTQwMDgxYWVjNWZjNzhlN2U5MGM1NWIwOTljNzEzOTVhMzMxN2Y1OGQ3NTEwZmM5ZWNmMDY2MDM1NWQ0IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:34 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6ImxEV1NwNHdnNEo1OGZ4Uk1TbTMrMlE9PSIsInZhbHVlIjoiODUxOFN6ZWNsNnFNS1grOHNWWGxLM1gwK0NCRmFXbFBvUmlndWpMVVJPN3EwN25TWUJLQkYxd2hSd3VVZld1ZzVZQ1U4OGdtMXBmY0dkQ0lFd1lON1VmNEVnRFZudzBHU0t1MFhrRVpvS1RSTTdldzQ5eWlTN21yai92L0lpanAiLCJtYWMiOiIzMGI5MjgxYjA4MjNkMDA3NTNhMGMzNTVhZTMxNjVkYTZlNmY1ZDZlMDc5NzBlNjZiYzE5OGU0OTAwMTI2YzAxIiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:34 GMT; Max-Age=1209600; path=/; samesite=lax
PublishedSiteSession=eyJpdiI6IjNHdWFvUHczMWJwaVB1ZDFmc0FOcWc9PSIsInZhbHVlIjoic0RkOHM0UzNReHZsVTR0WGRwUmQ1RlpRYi8rTFVFWjF0QzV4QWlBa0xqaVB2ZmpYL3gzL1JiYVhPaFJseUp5YTlqd1hJL1NmS0E2TmRSZXpEcVdxNm43NUo2eGxvVFB1UmIrUU45ektDRFBvOU5OMVZHdERTNXJQTGZBOW42M2oiLCJtYWMiOiIyNjE4OGZiODMzYWJlMTExYTNkMWMzNGM4NGI2YmMwMmJiYjljNGVhM2I4OGU1NzRhNTc1YmM4Y2U1MzUwNDE4IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:34 GMT; Max-Age=1209600; path=/; httponly; samesite=lax
__cf_bm=yVsmXOI9BGYH6Q.3ifuFwsdEWHV1.ioMjsKOYdyTnX4-1699917634-0-AVcj2TXRmHBp0V3snmJxy8YeHrY/BuYTC8/04a/CK8+ZdwjJwHAWQ7r7qHpvGWzIrOsfWBdeynzVwK3yMao152Q=; path=/; expires=Mon, 13-Nov-23 23:50:34 GMT; domain=.weeblysite.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/languages/en.9103dcd31e005ac283cd.js
151.101.129.46200 OK 317 kB URL GET HTTP/2 cdn3.editmysite.com/app/website/js/languages/en.9103dcd31e005ac283cd.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 317 kB (317074 bytes)
Hash db95e2d942aacc8dacefca4e8f664b5c
a800ab1836b937db25adc3d8c7c6adf51960bce9
780a444abce6b4bf210b10d379d7caedf88faa825c216a4d38888a80e6db76a6
GET /app/website/js/languages/en.9103dcd31e005ac283cd.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:55 GMT
x-rgw-object-type: Normal
etag: W/"db95e2d942aacc8dacefca4e8f664b5c"
x-amz-request-id: tx000001a808d8d7198b03c-0065523c7a-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.9103dcd31e005ac283cd.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 22812426125154da6e64c21ef16529ca
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 29267
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917636.636163,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 317074
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/site.9f2629efa9404a9054fc.js
151.101.129.46200 OK 982 kB URL GET HTTP/2 cdn3.editmysite.com/app/website/js/site.9f2629efa9404a9054fc.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (49098)
Size 982 kB (982030 bytes)
Hash c147f9c524e1c13c72f1caa351bcefb9
559f2741171bbf08e0c49ac77070f74ca112b51f
f290145b808f3e41ccf0d156df3180ce36f553c1982ad4bc8551fc5d5b09bcce
GET /app/website/js/site.9f2629efa9404a9054fc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 20:27:43 GMT
x-rgw-object-type: Normal
etag: W/"c147f9c524e1c13c72f1caa351bcefb9"
x-amz-request-id: tx000003d1ca8c3d4a5d6a3-0065528726-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.9f2629efa9404a9054fc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
x-request-id: 9e359c8f32cf8aecea8ac3f1ee5ad652
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
via: 1.1 varnish
age: 10268
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917636.639201,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 982030
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.251ea41e562e03bc.js
151.101.129.46200 OK 4.1 kB URL GET HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.251ea41e562e03bc.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type JSON data\012- , ASCII text, with very long lines (18701), with no line terminators
Hash d6fa494f010bf949642cb481a5703b55
2f1976fd07de590f639e09aa2f636f795b261cde
b1a52364becee055bba45bf1ece96347eb638b55e6762c1b1bfa5197d117e161
GET /app/checkout/assets/checkout/imports.en.251ea41e562e03bc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 18:35:49 GMT
x-rgw-object-type: Normal
etag: W/"d6fa494f010bf949642cb481a5703b55"
x-amz-request-id: tx00000dfb5623c7bb6d0f1-0065526d13-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.251ea41e562e03bc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 16861
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 23
x-timer: S1699917636.105109,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4088
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8ecf5ca1679dc915.json
151.101.129.46200 OK 683 B URL GET HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8ecf5ca1679dc915.json
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type JSON data\012- , ASCII text, with very long lines (2521), with no line terminators
Hash 086ea433587b249cdba5d10ff37b2751
463237d0a29f13d72be76a5f5ce0eff332dfb645
c7386736c730e199f00c2385650c7ba7b14999398f13084b437af3afa4773636
GET /app/checkout/assets/checkout/locale-imports-map.8ecf5ca1679dc915.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Tue, 07 Nov 2023 15:35:33 GMT
etag: W/"654a5945-9d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 520641
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 13
x-timer: S1699917636.110738,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 683
X-Firefox-Spdy: h2
bt-103993.square.site/uploads/b/57d5f160-6fde-11ed-b7eb-71b6f0c86555/icon_180x180_ios.png?width=180
199.34.228.40200 OK 272 B URL GET HTTP/1.1 bt-103993.square.site/uploads/b/57d5f160-6fde-11ed-b7eb-71b6f0c86555/icon_180x180_ios.png?width=180
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash e17b262431dbad67687c3b78c92c09f9
bb8d1aa77e86bba6118ad9d59b2e71fc0c40c194
84717b9332a12a82cf3ee5c72b5843e1487691a28e9bb1bb6eaa9e06e15001fe
GET /uploads/b/57d5f160-6fde-11ed-b7eb-71b6f0c86555/icon_180x180_ios.png?width=180 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:36 GMT
Content-Type: image/webp
Content-Length: 272
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "F5mJ839hi3VhBqNjVRiaK8s3mHa8EWDUVveiyEVIRwE"
Fastly-Io-Info: ifsz=503 idim=180x180 ifmt=png ofsz=272 odim=180x180 ofmt=webp
Fastly-Io-Served-By: vpop-haf2300706
Fastly-Stats: io=1
X-Amz-Request-Id: tx000004a8e86037bc7da95-0064a3628a-db1c716-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: za671
X-Storage-Object: a671350afe8db049bfb3b36936109ca91fe67579383b09e856deb563517cc081
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc10034-SJC
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1699917637.824829,VS0,VE27
Vary: Accept
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu155.sf2p.intern.weebly.net
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
35.186.247.156200 OK 2 B URL POST HTTP/2 sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP 35.186.247.156:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subjectsentry.io
Fingerprint18:3C:11:53:56:65:8B:09:02:F1:6B:26:E3:C2:C9:37:E0:E8:72:98
ValidityTue, 08 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
Content-Type: text/plain;charset=UTF-8
Content-Length: 419
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 13 Nov 2023 23:20:37 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/home-page.74bc6c44281c650698a8.css
151.101.129.46200 OK 409 B URL GET HTTP/3 cdn3.editmysite.com/app/website/css/home-page.74bc6c44281c650698a8.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (924), with no line terminators
Hash c15f76990b289605f4ed83b445dae60c
1794f43d0196f4a89af357e77fdb07bd0b4b4166
bac55151545a69c7126cb8e8bfef99e07e0f595a9d07f9003e3d8420ba2964d3
GET /app/website/css/home-page.74bc6c44281c650698a8.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 409
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:02:40 GMT
x-rgw-object-type: Normal
etag: W/"c15f76990b289605f4ed83b445dae60c"
x-amz-request-id: tx000003bc82c6d3699a0c5-00654400c3-db1a051-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b7bf12796623a77cb2c69586f70d87852128c2d
x-request-id: 45db360985042861c9072bef66209f02
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 962146
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.984054,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/96810.02f228e6bd7598bdee3b.js
151.101.129.46200 OK 4.8 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/96810.02f228e6bd7598bdee3b.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (6503)
Hash 5810fe2cc2f7cda8a3479b24f2c44775
11fd4aa02b018925e27216313c419cbe59bc5afb
57adb448603658cea8e729380608ac4c9faf778fb4e3e28bd82ec6415aaa756d
GET /app/website/js/96810.02f228e6bd7598bdee3b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4847
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 09 Nov 2023 17:58:23 GMT
x-rgw-object-type: Normal
etag: W/"5810fe2cc2f7cda8a3479b24f2c44775"
x-amz-request-id: tx00000974b83d8604e4cd0-00654d1e21-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/96810.02f228e6bd7598bdee3b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 20855b9cd5da93b892aa8a516e13933950ef9f2c
x-request-id: b4c3c55a9257945226c2d755e166d561
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 364692
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.971686,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/34707.77fa4fa576d77019a9d1.js
151.101.129.46200 OK 7.8 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/34707.77fa4fa576d77019a9d1.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (19998)
Hash 45bec1e757aeee2c61657a57ab8f6f2f
71dee0408200022bf8f51a496bdc3ff46eda6015
213097b154fb5c11ed3686e5b07850a6cf552513986d8492a81ba945f49bb199
GET /app/website/js/34707.77fa4fa576d77019a9d1.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7785
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 Nov 2023 20:22:35 GMT
x-rgw-object-type: Normal
etag: W/"45bec1e757aeee2c61657a57ab8f6f2f"
x-amz-request-id: tx00000625ea48a5d8fdb08-0065494b80-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/34707.77fa4fa576d77019a9d1.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
x-request-id: 775d7f17dc8c9fa8ef05d0f31c15fe2e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 4337
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.979840,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/50774.d1eaf44ffa3bb84b91b4.js
151.101.129.46200 OK 3.6 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/50774.d1eaf44ffa3bb84b91b4.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (4213)
Hash 9791dc0f7b7861caefea679caa993be9
91012195abde89f3079212754ead13b366183d87
3b8a35f69ef77f84752d13264a991dd981e4d8e20d2125925e113ba90234fa1a
GET /app/website/js/50774.d1eaf44ffa3bb84b91b4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3613
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:02:40 GMT
x-rgw-object-type: Normal
etag: W/"9791dc0f7b7861caefea679caa993be9"
x-amz-request-id: tx00000ca8af090a546db83-00654400c6-db1a099-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/50774.d1eaf44ffa3bb84b91b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: 07e2f99ba316ffe254bde8c85375f654
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 594858
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.982228,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/home-page.26bdf9cfa7e8021ce8fb.js
151.101.129.46200 OK 6.2 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/home-page.26bdf9cfa7e8021ce8fb.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (20971)
Hash 2b7da94d92d6d5d04cc3e5ea9e740aee
eea238f3f9c695dd22f3a32f398536ace89c6cd5
137c83a2e41d404f896cf6f291ffe8fca4e2d3aff7a6f08f5738f337144380ad
GET /app/website/js/home-page.26bdf9cfa7e8021ce8fb.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 6213
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:02:40 GMT
x-rgw-object-type: Normal
etag: W/"2b7da94d92d6d5d04cc3e5ea9e740aee"
x-amz-request-id: tx0000017e3ee938af8cb4a-00654400ce-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.26bdf9cfa7e8021ce8fb.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b7bf12796623a77cb2c69586f70d87852128c2d
x-request-id: a58bd499def096802c17ee7d0fc3b26b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:36 GMT
via: 1.1 varnish
age: 962146
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917637.987530,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
bt-103993.square.site/app/website/static/icons/sets/square/chevron-left.svg
199.34.228.40200 OK 216 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/chevron-left.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6aa1efc78eeaabc61f81143850c56a20
785cfb7866be5b416bd474d6c4bcac5e25b61487
00c629ac07a53a8dd92ace0c212743ef17337c75436767830a81b66c246e3074
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/chevron-left.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 2939708918495257057
x-datadog-sampling-priority: 1
x-datadog-trace-id: 3811644875628843812
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:37 GMT
Content-Type: image/svg+xml
Content-Length: 216
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "6aa1efc78eeaabc61f81143850c56a20"
x-amz-request-id: tx00000ea08722278dc67aa-0064386db6-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn72.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 8186797af0a7fb04bc13aa269dba03fb
bt-103993.square.site/square.ico
199.34.228.40200 OK 6.5 kB URL GET HTTP/1.1 bt-103993.square.site/square.ico
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /square.ico HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:37 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001ac6ae5-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu127.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 320a5cbd3a92d902f26a884d3ba6e428
bt-103993.square.site/app/website/cms/api/v1/users/144020543/customers/coordinates?cache-version=2023-11-13
199.34.228.40200 OK 70 B URL GET HTTP/1.1 bt-103993.square.site/app/website/cms/api/v1/users/144020543/customers/coordinates?cache-version=2023-11-13
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash a7e073f68c3ee5180cb244493dc1aee5
7d07a4edaae2c0e314f1e78fb52fed03c2444775
556513032d462a1dd91f979c97837ed47573e84e16d1316ea303ec341a99124f
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/cms/api/v1/users/144020543/customers/coordinates?cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 363010131553162388
x-datadog-sampling-priority: 1
x-datadog-trace-id: 2455429796674354527
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 13 Nov 2023 23:20:37 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:37 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; expires=Mon, 27-Nov-2023 23:20:37 GMT; Max-Age=1209600; path=/; samesite=lax
X-Host: blu127.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 42f4baf907f83383fcf0ee1cc7188396
Content-Encoding: gzip
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]&cache-version=2023-11-13
199.34.228.40200 OK 955 B URL POST HTTP/1.1 bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]&cache-version=2023-11-13
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (955), with no line terminators
Hash f7cda1de4c03fef258c50e71ce1a6805
9a23f11fd66602e2de59576f6785987eca3addde
e12875b1b57ece70569403afc013462d43043f090be9eff386b948cfff6dcf0d
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 7874064904217201342
x-datadog-sampling-priority: 1
x-datadog-trace-id: 3908351641772819921
Content-Length: 78
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:37 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn42.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 955
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]&cache-version=2023-11-13
199.34.228.40200 OK 201 B URL POST HTTP/1.1 bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]&cache-version=2023-11-13
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 3157428825104593929
x-datadog-sampling-priority: 1
x-datadog-trace-id: 6257343048144819612
Content-Length: 83
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlhtRkhGMHcrNFdxbExxdk1RclByL2c9PSIsInZhbHVlIjoia3V1eDhoTjQvUHdLdGdZSXpCSUU2dEZzb3gveDF0akdoZ0tXVUxYcEw0NG9nUVlZOUxocGRJSDBsZVl5VzV3UWhGaG9ZY0FrakE5NFFBR24xNVpkS3g3OXB0T1k4TmVlVno4WXhXV2dFbkJyc0NEMDZsemhFMWEyTkNZdmZnSTIiLCJtYWMiOiI3NzNkNjZlOTY0NGZiNjg5MTQ1NDc4NWUxYzMxNTMwMmJlOTliM2MxNDQzZGU2OTI3MDIxOTcwMDBhMWQ5ODBmIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:37 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn46.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/font.css
151.101.129.46200 OK 393 B URL GET HTTP/3 cdn3.editmysite.com/app/website/static/fonts/Square%20Market/font.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
Hash a7ddbe9e253a4f3a9c6de33cf4f3ce60
121dc4d397d856ca5a65afaa1792e4c12a53132d
305ed7422238f098fb7513413aa992da0ced50741e5286ced433e30f5bf59971
GET /app/website/static/fonts/Square%20Market/font.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 393
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 17 Sep 2019 17:09:50 GMT
x-rgw-object-type: Normal
etag: W/"a7ddbe9e253a4f3a9c6de33cf4f3ce60"
x-amz-request-id: tx0000092be2f69bd3f54b4-006536898f-db1eedd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: da60ac2a63b558797da67b7f27ab6101bf9665d8
x-request-id: 3fde30e14c7e32244d1230dcdba51990
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1798842
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917638.093137,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn5.editmysite.com/app/store/api/v28/editor/users/144020543/sites/372939439502453529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1&cache-version=2023-11-13
151.101.129.46200 OK 6.7 kB URL GET HTTP/2 cdn5.editmysite.com/app/store/api/v28/editor/users/144020543/sites/372939439502453529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1&cache-version=2023-11-13
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type JSON data\012- , ASCII text, with very long lines (13626)
Hash e7e0e89f0fa514f1fa7f905b19ba1344
8c47cb7f39e7162e60d72868f1184ba9c6ff638a
3f6e4d2816b13f74ddd7b4c3ecc1fa7da6253218952bc520834c4cfc5628cb87
GET /app/store/api/v28/editor/users/144020543/sites/372939439502453529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1&cache-version=2023-11-13 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: no-cache, private
etag: W/"65e59f5ddd14eecab9f938333d0c1adc"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: c559860203ed9ed1956a722c2b693b54b45ec72d
x-request-id: 52f837270bae7971d2ee4b3911a38790
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1621-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1699917638.625809,VS0,VE297
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/32949.7c4aa91b5d57a6dfcbd0.js
151.101.129.46200 OK 7.7 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/32949.7c4aa91b5d57a6dfcbd0.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (7969)
Hash 63d2d674e91e07cfa941f5fc1222a942
7ab42d0e153b0c38921790bbb6a5644d0b9356f8
6089acb070bd5c61eaaaa9af96f9e73cc489c1237ee19e977c39de9e98f4f346
GET /app/website/js/32949.7c4aa91b5d57a6dfcbd0.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7689
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:54 GMT
x-rgw-object-type: Normal
etag: W/"63d2d674e91e07cfa941f5fc1222a942"
x-amz-request-id: tx00000d48ca2c2e7f43fe0-0065523c7b-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/32949.7c4aa91b5d57a6dfcbd0.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 2074713f44dcd4b16be2131fbde57890
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.141953,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/16526.101b2153816049bd7687.js
151.101.129.46200 OK 10 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/16526.101b2153816049bd7687.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (17377)
Hash 26d81a0b8160538a0d6bba06399c71fb
83aaf6cfe6ce7e1c790eff02fe3209c2c1f45ff4
b4314e89bc40559ef7a14e16724355843a5e298b70fde25222d10e16e75f1332
GET /app/website/js/16526.101b2153816049bd7687.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 10089
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Oct 2023 15:45:33 GMT
x-rgw-object-type: Normal
etag: W/"26d81a0b8160538a0d6bba06399c71fb"
x-amz-request-id: tx00000f2e4647b9574097a-0065412194-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/16526.101b2153816049bd7687.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 810d8c0336c2a47a049693d2796f35d2741cb496
x-request-id: 5d080d9a65d12c2d3e8c2893d89d044a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1150385
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.143089,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/navigation-mobile.b8f7c7e0b248dd24782b.css
151.101.129.46200 OK 5.1 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/css/navigation-mobile.b8f7c7e0b248dd24782b.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (19021), with no line terminators
Hash 045d0ca72c73e08ccf13bcd6020203c9
e4884f64d4f3605c02086f77a5e75970931e90be
269059ab56ef4eac2303c41dca361262254fece4b0534a3e17c1127b98891f7f
GET /app/website/css/navigation-mobile.b8f7c7e0b248dd24782b.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 5082
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:53 GMT
x-rgw-object-type: Normal
etag: W/"045d0ca72c73e08ccf13bcd6020203c9"
x-amz-request-id: tx000000a42679e72385b7d-0065523c72-db1a051-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: a1e19bfda9f622a1e010cbcb85b5ed5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.147443,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/navigation-mobile.e750271b767bcdc82d1a.js
151.101.129.46200 OK 4.9 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/navigation-mobile.e750271b767bcdc82d1a.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (13578)
Hash 1f0720c6b084192a8898e88f075e2bfd
5961cac046b47f321f22e67536b40a740bd63940
3dd3cef731219786139c4982f0bea5203687e9773ccd738c24f790c186e465d1
GET /app/website/js/navigation-mobile.e750271b767bcdc82d1a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4858
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Oct 2023 15:45:33 GMT
x-rgw-object-type: Normal
etag: W/"1f0720c6b084192a8898e88f075e2bfd"
x-amz-request-id: tx00000522248c749287b03-0065412196-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.e750271b767bcdc82d1a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f8d9c2b2668c582be5059cee8158143c25a0516a
x-request-id: 07f0de09d3645295f484d8218e1f6860
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 950788
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 4090
x-timer: S1699917638.155365,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/36018.590feea18d72e356dddf.js
151.101.129.46200 OK 4.0 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/36018.590feea18d72e356dddf.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (15161)
Hash 9f5e5bb55e22b9918664075d6b925cae
063b1c4baeecfc742bf831ab21ec0a1cbdb46f3a
81cf3f67b63af69096f53b0eddc39dea2bd1049511764512b35a1ff3d9c7a195
GET /app/website/js/36018.590feea18d72e356dddf.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3986
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"9f5e5bb55e22b9918664075d6b925cae"
x-amz-request-id: tx00000bf314e02ff2ee72b-006537c81b-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/36018.590feea18d72e356dddf.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: 987feb64aa86e371a8d77949723ff42e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 601573
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.183809,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/96166.f25623fa8c921209fb62.css
151.101.129.46200 OK 5.1 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/css/96166.f25623fa8c921209fb62.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (20652), with no line terminators
Hash af50f205928834071dd0533b4f7bf1f4
43e4b8ce1a21ec54dc7ba2cbec55dd343dcb52e0
a73b50d69c471ffddf5e7af657fd2b033f0010da15cb6ffa591acdf900707da3
GET /app/website/css/96166.f25623fa8c921209fb62.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 5148
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"af50f205928834071dd0533b4f7bf1f4"
x-amz-request-id: tx00000ad94b64b4647d1ea-0065406480-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: 7fa96487532465cb61f5b9ab5ebaf2c9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1198789
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.184005,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/cart-1.62bf1ce97aa468a46a93.css
151.101.129.46200 OK 7.2 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/css/cart-1.62bf1ce97aa468a46a93.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (26841), with no line terminators
Hash aa0a9bb4c2f711bd05fb4f926a18c369
22e4a60a783d762da4c6b976cabc27b0f895e3c0
498ee356098a59bc149ea18921a98193d39091706e29ff9ac1366facc2bc7999
GET /app/website/css/cart-1.62bf1ce97aa468a46a93.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7237
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"aa0a9bb4c2f711bd05fb4f926a18c369"
x-amz-request-id: tx0000028bc86de3f834340-006537c815-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7c1dfc2e2c8ab08b4abe445ee3e347dc59850f42
x-request-id: 882fcb7f2caae1ca69a852e275a5ce86
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763076
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.192281,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/46217.377ffb96f8dae3823866.js
151.101.129.46200 OK 16 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/46217.377ffb96f8dae3823866.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (39504)
Hash f8a5dd1261e5c10dc50b2f5829db294f
1efd057ae39b9fb46716dc79a1a11276f169596b
8bb1f78dc7edbba6b9947f3e13b3c8f8f9442fab827215d53c93300d4f5986b3
GET /app/website/js/46217.377ffb96f8dae3823866.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 16245
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"f8a5dd1261e5c10dc50b2f5829db294f"
x-amz-request-id: tx00000873c5acaf9ea75f0-006537c819-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/46217.377ffb96f8dae3823866.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: c51d878b1fea881ac7ff564572de115f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 584767
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.185883,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/25330.20634d9efe98e6097e3e.js
151.101.129.46200 OK 3.7 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/25330.20634d9efe98e6097e3e.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (4156)
Hash 5dfd5b594f0fa1c1fba15f57b6be580f
1ebefa473be4fd4f3e39861f0e7b05021126826b
7c9cf48ac2e76198a496c14dcfc8f110dfb710630922a0cde66f5bf6174c4750
GET /app/website/js/25330.20634d9efe98e6097e3e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3701
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 30 May 2023 10:08:18 GMT
x-rgw-object-type: Normal
etag: W/"5dfd5b594f0fa1c1fba15f57b6be580f"
x-amz-request-id: tx0000004484429b7c53689-006475cb9b-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/25330.20634d9efe98e6097e3e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2fc03108d5500477ab424588b2ebabbe038c3bc6
x-request-id: 0d70343550e22714241ebad56b2fd882
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 2414280
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.188546,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/18384.176f66eb588874bb9706.js
151.101.129.46200 OK 4.6 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/18384.176f66eb588874bb9706.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (7816)
Hash a2f3814021c877242107012287ed44ee
5b30a16f8420fb4136e9c22b7c31f0438753340a
022220aea8015480080f3575c5c1682be12f4ee8edf783c3c0924e1ee49e2e18
GET /app/website/js/18384.176f66eb588874bb9706.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4592
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Oct 2023 17:06:08 GMT
x-rgw-object-type: Normal
etag: W/"a2f3814021c877242107012287ed44ee"
x-amz-request-id: tx00000f0bd629c80385fcf-00653809de-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/18384.176f66eb588874bb9706.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: aeabd029deef5a28c347eaabbef74592c9000aad
x-request-id: 533cae20d1fca4eebc0808439bccdeb4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1746099
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 261
x-timer: S1699917638.192013,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/cart-1.80724f3dfdd7e247d420.js
151.101.129.46200 OK 34 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/cart-1.80724f3dfdd7e247d420.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (13211)
Hash 60172efcba65b7fca3bfaeeaf56311c4
f61ac2f6aeb61cd5bf8d690603ad6373c3b56b65
dcd902927aec196385a20503cc84c2ab63ca1792c146b83e218e69681168d170
GET /app/website/js/cart-1.80724f3dfdd7e247d420.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 34355
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 09 Nov 2023 17:58:23 GMT
x-rgw-object-type: Normal
etag: W/"60172efcba65b7fca3bfaeeaf56311c4"
x-amz-request-id: tx000005671ae552913847b-00654d1e24-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.80724f3dfdd7e247d420.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 20855b9cd5da93b892aa8a516e13933950ef9f2c
x-request-id: 74309fa0acb2ab6e7cdefe92abef84f1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 364691
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.197979,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/81715.49ceb777839faa5edd46.js
151.101.129.46200 OK 4.9 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/81715.49ceb777839faa5edd46.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (10840)
Hash db8275f5e361657953400d96c587bd7f
f24fdba8c300e1129be7f44e7bdfed3de67c27b0
dd1c477f1c36a767f4ae6be651c7345d37eafcaf9da33287514e8c67be3db086
GET /app/website/js/81715.49ceb777839faa5edd46.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4913
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"db8275f5e361657953400d96c587bd7f"
x-amz-request-id: tx000007f12b7884f55b18b-006537c815-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/81715.49ceb777839faa5edd46.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: da60ac2a63b558797da67b7f27ab6101bf9665d8
x-request-id: 205311fda7ccee6e2a6442d79daea438
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763076
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.262395,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/header-8.7250468b20baae6127bc.js
151.101.129.46200 OK 26 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/header-8.7250468b20baae6127bc.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (19073)
Hash d689aa622fc5dc2f573d11c7e194f7c7
4c3ecfe207e2ca32b00ef220d0bd11930e849faf
b80e379b1910a346fe3ab386fd81537e57a5b25ab8d6389791433b720c056d4a
GET /app/website/js/header-8.7250468b20baae6127bc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 26376
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:55 GMT
x-rgw-object-type: Normal
etag: W/"d689aa622fc5dc2f573d11c7e194f7c7"
x-amz-request-id: tx00000eaedc04b1223b9ca-0065523ce1-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-8.7250468b20baae6127bc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 230fb97b64c9ddd98dccc80440d3be02
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29209
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.281941,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/87697.74d8d6c3a59a34e861b7.js
151.101.129.46200 OK 1.8 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/87697.74d8d6c3a59a34e861b7.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (4129)
Hash 968dc755f854e6189e81104e4ac2d541
cc6d60b0d67474d564c859de1c0a8cef14a714e2
29f7d06e0b00ed26a71bf5f9b5dfd55e8062fba5aebc27e6693ee21ec6f364d2
GET /app/website/js/87697.74d8d6c3a59a34e861b7.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1817
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Jun 2023 17:03:41 GMT
x-rgw-object-type: Normal
etag: W/"968dc755f854e6189e81104e4ac2d541"
x-amz-request-id: tx000000736e906af1df86d-0064f5e1f9-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/87697.74d8d6c3a59a34e861b7.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2fc03108d5500477ab424588b2ebabbe038c3bc6
x-request-id: d9bd0333d472ee194c0815a8ea5466ae
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 2409248
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.314277,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/86141.c2a52b0f7ec89f22b41b.js
151.101.129.46200 OK 3.9 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/86141.c2a52b0f7ec89f22b41b.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (8870)
Hash 07707320d1cd4f7a9e3856b93b61b49f
2d5c7eb3d7bc4c34a953c83a6c1e46114faf2148
0dd738fb3bf792032a9b8f40c2363cb63fcb3590c5d8cbc41f6d3351dcc3de04
GET /app/website/js/86141.c2a52b0f7ec89f22b41b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3876
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 27 Oct 2023 16:03:18 GMT
x-rgw-object-type: Normal
etag: W/"07707320d1cd4f7a9e3856b93b61b49f"
x-amz-request-id: tx000005d80c25e6aaff152-00653bdfae-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/86141.c2a52b0f7ec89f22b41b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: e84958855073ccffebadf48450933f70
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1211230
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.315706,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/50075.036aa3207fb7f7a4c4cc.css
151.101.129.46200 OK 3.8 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/css/50075.036aa3207fb7f7a4c4cc.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (19548), with no line terminators
Hash e85660dbcde27a8abb0e5a84ec057e73
c4d25b982fa374928e6546b20274e559c7c836ba
737e24ccb06c2a53fe2a1271bfb7854da37e511a76a08a0ca5dfbef510be7ba9
GET /app/website/css/50075.036aa3207fb7f7a4c4cc.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3769
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"e85660dbcde27a8abb0e5a84ec057e73"
x-amz-request-id: tx00000e3d715e5ec6480ad-006537c814-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7c1dfc2e2c8ab08b4abe445ee3e347dc59850f42
x-request-id: f694fe2d7f367b8db2f6e50e40d22e5b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763054
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.317870,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/50075.5785010b45b83e901526.js
151.101.129.46200 OK 41 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/50075.5785010b45b83e901526.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4c9246a55af0ec1c5e5828b2f473d184
653d8c8c107e0c62bf8adb3667a9806515ab7a20
a9052762282e65dcc19f0810d88d34d6b118541e0152e438284694c9860071b9
GET /app/website/js/50075.5785010b45b83e901526.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40935
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:28 GMT
x-rgw-object-type: Normal
etag: W/"4c9246a55af0ec1c5e5828b2f473d184"
x-amz-request-id: tx000000ceb8248bfbf115b-006537c817-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/50075.5785010b45b83e901526.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7c1dfc2e2c8ab08b4abe445ee3e347dc59850f42
x-request-id: 47dd9403f077e34a8b6de5e67a2b94d1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763054
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.319173,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/68206.990eedf59c8976876669.js
151.101.129.46200 OK 4.1 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/68206.990eedf59c8976876669.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (7246)
Hash 14d20999167f6b6e995e2f0112fa54aa
c264cbe818a7ff825c3e3e5371f2e33be35dc0c2
3e3c73a888e52072b682aef8fd62e3e7b93a46c563d4af075d4e97b453b9b1c6
GET /app/website/js/68206.990eedf59c8976876669.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4125
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 27 Oct 2023 16:03:18 GMT
x-rgw-object-type: Normal
etag: W/"14d20999167f6b6e995e2f0112fa54aa"
x-amz-request-id: tx00000860dc5614bfe0615-00653bdfb7-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/68206.990eedf59c8976876669.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a645ec98d4815058b7c6d1b58971ae95335f411b
x-request-id: 7164933e2cf8c1ae8c8ddcc30ac5d3b0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1494872
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.320827,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/banner-1.4c689381d09d146a8db4.css
151.101.129.46200 OK 3.9 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/css/banner-1.4c689381d09d146a8db4.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (15199), with no line terminators
Hash 6e35a6c1a0d90d5d64dce180cc8b751b
bb9421f89de9ebd36caf1c4a3e245f87d787dcc0
521b1ca4c57a11bd4c894e38e000cbc22782a20c048829e729572c9bb96ee0c5
GET /app/website/css/banner-1.4c689381d09d146a8db4.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3868
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:24 GMT
x-rgw-object-type: Normal
etag: W/"6e35a6c1a0d90d5d64dce180cc8b751b"
x-amz-request-id: tx00000299b9682a4fef732-006537c815-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: da60ac2a63b558797da67b7f27ab6101bf9665d8
x-request-id: 4dde9bf9d1b64f7f43e35ffde5ea8680
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1763054
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.331197,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/40996.a1de09cfd1e9946ce6ec.css
151.101.129.46200 OK 7.2 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/css/40996.a1de09cfd1e9946ce6ec.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (29585), with no line terminators
Hash 427b87b4fb4b05f213e4c1eb6011b385
0fc914204a96e3cefeb41fd5b5bc2e3f8b202c4e
dc9b9f7d40aeeebb41c1db8d99f1877ef6df1a9a84d8b04d0e0a4fc872f6669b
GET /app/website/css/40996.a1de09cfd1e9946ce6ec.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7241
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:52 GMT
x-rgw-object-type: Normal
etag: W/"427b87b4fb4b05f213e4c1eb6011b385"
x-amz-request-id: tx00000e484d3e586d76d60-0065523c7c-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: 290b3b9b91f46a51de23fc927a8102cf
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.334683,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/4020.a473821acb7d7b794bb0.js
151.101.129.46200 OK 21 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/4020.a473821acb7d7b794bb0.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 605570a3323d8ada6cda58359a0c4202
1404f6897557761c9fb11e73c87a47bcfe03af3b
bef793c33c0df5d5bcb1bf481eea1f45637422977d9545f494e68aba87330805
GET /app/website/js/4020.a473821acb7d7b794bb0.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 21448
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:54 GMT
x-rgw-object-type: Normal
etag: W/"605570a3323d8ada6cda58359a0c4202"
x-amz-request-id: tx00000c679dfabbcb2c625-0065523c74-db1a099-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/4020.a473821acb7d7b794bb0.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: ee243b66d8012c93345a36e103327abe
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.321121,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/75876.6243f3bbebbd8642de6b.js
151.101.129.46200 OK 5.7 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/75876.6243f3bbebbd8642de6b.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (14216)
Hash fd284dad2a14c442e2df6820aea4be5d
a2408eff33d42fcd8fbe66e3bd7e2545ebaebecc
99d1a685990a310268b1953cd00b4d56e3cc5f5dd47646a77bffbd88ae5e797f
GET /app/website/js/75876.6243f3bbebbd8642de6b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 5677
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 18:10:19 GMT
x-rgw-object-type: Normal
etag: W/"fd284dad2a14c442e2df6820aea4be5d"
x-amz-request-id: tx0000003ccfc0c7e3b86a9-00655266f0-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/75876.6243f3bbebbd8642de6b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d421631698b2ab08f3833cddd86a0ae9d61b07ae
x-request-id: 76dbffe7d75e8becd435f51d480157c6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 18315
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.322648,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/86276.6e20dce5d4cae2bea300.js
151.101.129.46200 OK 4.3 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/86276.6e20dce5d4cae2bea300.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (8649)
Hash 71155b39d1496c2b0155b9422a28e276
73f8be55b1174b1aad46ae8542a110d9d210599e
a531a35bfb2aa46e203ebe7a10d78d52b9572880bfbd4cf4a9d541b91ec99c9c
GET /app/website/js/86276.6e20dce5d4cae2bea300.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4287
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 10 Oct 2023 16:02:01 GMT
x-rgw-object-type: Normal
etag: W/"71155b39d1496c2b0155b9422a28e276"
x-amz-request-id: tx00000cb119d50b69b0b8d-00652575e9-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/86276.6e20dce5d4cae2bea300.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: b8ccffa74b565a6e6f8d22b9876d108e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 598978
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.327744,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/11775.0289efd8be2977d09a8d.js
151.101.129.46200 OK 8.9 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/11775.0289efd8be2977d09a8d.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (23800)
Hash 113cfde3fe0ed0b4d69f31e6ae9cd210
fe6f3303cd35954a74008308600a679a06834fd4
b69684ec5ad39957b097126cc7e27279b30c1cdf3e7e6b9f1da3c0f387eb63dd
GET /app/website/js/11775.0289efd8be2977d09a8d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 8904
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 Oct 2023 23:22:52 GMT
x-rgw-object-type: Normal
etag: W/"113cfde3fe0ed0b4d69f31e6ae9cd210"
x-amz-request-id: tx000009f4c056d72c30917-0065418cb8-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/11775.0289efd8be2977d09a8d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: cf81891ba54ea6acff3a210b54479397
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 598978
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.330577,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/banner-1.673cdaf0b18d11def0fa.js
151.101.129.46200 OK 4.7 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/banner-1.673cdaf0b18d11def0fa.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (10662)
Hash 4dc9771250b85514be1a760d1546a38a
ea29f781b894db4aaa5985df9361ca8850ed7012
b1688774874b23ea21f34644238147ea6cf3b325c8a94a8016ab9cdcdd9d703a
GET /app/website/js/banner-1.673cdaf0b18d11def0fa.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4673
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 29 Sep 2023 15:36:38 GMT
x-rgw-object-type: Normal
etag: W/"4dc9771250b85514be1a760d1546a38a"
x-amz-request-id: tx00000a072b34792e81aef-006516ef7b-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/banner-1.673cdaf0b18d11def0fa.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: a543380e39428194fdd91984f6a39825
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 580906
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.331187,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css
151.101.129.46200 OK 239 B URL GET HTTP/3 cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (622), with no line terminators
Hash e0475a260378e42162f0605e782bc9ff
5dd67892cd8f5c1a1fdca46f6154ebbd42d3e870
0be3aac1ef8c956a6e70da2a16f02e500068a7928a842aac7d3993b8d2802aa6
GET /app/website/css/footer-7.7d9df2bbcb508697998e.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 239
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 09 Dec 2021 21:01:03 GMT
x-rgw-object-type: Normal
etag: W/"e0475a260378e42162f0605e782bc9ff"
x-amz-request-id: tx00000927c53e176df057b-0065405385-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: adefaf7931e24da050192f80c814709d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1196640
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354780,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
151.101.129.46200 OK 351 B URL GET HTTP/3 cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (626), with no line terminators
Hash 607e0fd2b514ffdc06c62b1eb1bc428b
9813c79ecc25a39fb2001780bd2a89a41f589be0
0e4c81150634a1580473d241b3d8d425776793cd1c3931c1d879065f63b88c8f
GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 351
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000e54e6facebd58c5a-00650a9c31-db1a099-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7ae81951df718b1026188d885ba9e3e6c8144748
x-request-id: 79a1ad2f61d6d1132c07c9e1341435cb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 4233361
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354736,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/15422.11f3a8ff7a9bd0ef34e5.js
151.101.129.46200 OK 8.7 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/15422.11f3a8ff7a9bd0ef34e5.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (12275)
Hash a5898ed852bbdb103dfd167ef215bb4a
951025246039bed6cca19e770763a41f0b97ec5d
6a36da35ea3076137ce5921dcf55574227ba022bec2d2b109b7a06d98ce8db37
GET /app/website/js/15422.11f3a8ff7a9bd0ef34e5.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 8684
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Oct 2023 13:33:27 GMT
x-rgw-object-type: Normal
etag: W/"a5898ed852bbdb103dfd167ef215bb4a"
x-amz-request-id: tx000000f052940fb9a80d8-006537c813-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/15422.11f3a8ff7a9bd0ef34e5.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5a809548df84acc103c914effea415e297134e0
x-request-id: 4cd48fc3cc91b2034ce8c81819015ae1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1119279
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.332396,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/6156.15e13a5c247a9ba7b27c.js
151.101.129.46200 OK 9.7 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/6156.15e13a5c247a9ba7b27c.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (14455)
Hash d33ea0ee62ab57be3f1eba23126f9925
b2af831fcd0e4fb4e92bac60c64cd21b6d28de54
02fb1666b52b9f8de83829ca8b563de6e2a5990668706db7ad51ceaa0ada2a0b
GET /app/website/js/6156.15e13a5c247a9ba7b27c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9707
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 26 Oct 2023 18:20:00 GMT
x-rgw-object-type: Normal
etag: W/"d33ea0ee62ab57be3f1eba23126f9925"
x-amz-request-id: tx00000d5172fdd76359997-00653aae46-db1a099-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/6156.15e13a5c247a9ba7b27c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: 9a8fc021609945d2d7f628ae2c051360
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1194866
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.332813,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/2170.5a16bfd235351842997b.js
151.101.129.46200 OK 16 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/2170.5a16bfd235351842997b.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (25746)
Hash 7667988cd90ba5bcb9c4352468815def
3927f40fe6a87e2410d5283eb7b603046c0facb8
a0dd66db41efd44d91dae9742c7e96dc6d0eacf14bf85df47b602a04c5dcf229
GET /app/website/js/2170.5a16bfd235351842997b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 15847
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 19 Oct 2023 20:42:08 GMT
x-rgw-object-type: Normal
etag: W/"7667988cd90ba5bcb9c4352468815def"
x-amz-request-id: tx00000546d89f37542d815-0065319522-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/2170.5a16bfd235351842997b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 71314ff76c0102d5f35b96163786f3ada35b0154
x-request-id: 1efa67086c4b2ccdd475a2c140554ea5
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1206385
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.334710,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/css/header-8.1122e3b8d4fb62bcda68.css
151.101.129.46200 OK 6.5 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/css/header-8.1122e3b8d4fb62bcda68.css
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Unicode text, UTF-8 text, with very long lines (25190), with no line terminators
Hash 2195804c2ed3a73eee80188f4bbc9286
c25b02602e986d0fb05087f9be3a0cdbe7d4b841
706eb0b830ce470ff09f67156d948615a4a7377626b81a727c3bf38611463436
GET /app/website/css/header-8.1122e3b8d4fb62bcda68.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 6521
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:53 GMT
x-rgw-object-type: Normal
etag: W/"2195804c2ed3a73eee80188f4bbc9286"
x-amz-request-id: tx00000f994075ae4918371-0065523d6c-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
x-request-id: fbd2f22e9b901dfd01c059d743920ecd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1699917638.278293,VS0,VE169
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/40996.df17b7f82338ced7daf3.js
151.101.129.46200 OK 12 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/40996.df17b7f82338ced7daf3.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (14274)
Hash d2a8ceb757ce674d07a2a88c0dcee005
1f3d6d276f75f786eb0178d13f0c135d1db85998
a622f8be3e05f21bb4f2b1324f7a9a65856bd13ea27fc539f57a88c97a4e239b
GET /app/website/js/40996.df17b7f82338ced7daf3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 12044
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 13 Nov 2023 15:08:54 GMT
x-rgw-object-type: Normal
etag: W/"d2a8ceb757ce674d07a2a88c0dcee005"
x-amz-request-id: tx00000b478974060448073-0065523c75-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/40996.df17b7f82338ced7daf3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 751051e7fd0a79cbe9fa15a4f3b477cbe2372bcc
x-request-id: fcf681bae0a5c0ea1907d24784e65d52
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 29264
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.354806,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/footer-7.e30a432469d934ca499b.js
151.101.129.46200 OK 1.3 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/footer-7.e30a432469d934ca499b.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (4863)
Hash 3e380f78436f68aad2554ddef8844791
c9aae5d5a61610c15822dc536564e05fe99abd4f
9795be59924720e67b8415cce541774714c209017c51c726136d6115b27afac9
GET /app/website/js/footer-7.e30a432469d934ca499b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1291
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Oct 2023 17:06:09 GMT
x-rgw-object-type: Normal
etag: W/"3e380f78436f68aad2554ddef8844791"
x-amz-request-id: tx000007194c2b9f4a73483-00651c4a77-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-7.e30a432469d934ca499b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2fc03108d5500477ab424588b2ebabbe038c3bc6
x-request-id: dbe41374ff5671c9486a485f9d7f73f9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 2418364
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354748,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/js/free-footer.981302e127bb56732a3e.js
151.101.129.46200 OK 3.3 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/free-footer.981302e127bb56732a3e.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (7578)
Hash 8b7c1d42f663c59c0cc2900a81681b8f
c00a0cac40debc6c3ae16e8cd444ee8d98644041
ca4b8a9ff5029e262e97f0b2ade8ee754282cd3250ca7f5509d27769a7d98eea
GET /app/website/js/free-footer.981302e127bb56732a3e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3281
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 04 Oct 2023 04:24:10 GMT
x-rgw-object-type: Normal
etag: W/"8b7c1d42f663c59c0cc2900a81681b8f"
x-amz-request-id: tx00000d28b3c109bff36b8-00651ce953-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.981302e127bb56732a3e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: c31f2297161b4862a8932f623aea7ae7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 594447
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699917638.354722,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
151.101.129.46200 OK 41 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format, TrueType, length 41400, version 1.0\012- data
Hash ade801c572e692ed6abe4213896eccc8
82a61609a657857d3a2b2a4e12d7db9546221f22
f321df4af5ea5d9ad9d0840c3f6b332567584620efedd1fade186123abc7479e
GET /app/website/static/fonts/Square%20Market/sqmarket-medium.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41400
server: nginx
content-type: font/woff
last-modified: Tue, 15 Sep 2020 17:37:49 GMT
x-rgw-object-type: Normal
etag: "ade801c572e692ed6abe4213896eccc8"
x-amz-request-id: tx00000315f6fbb1bc3b2fe-00654b3b50-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7124b4dadfde01daf9340bde27ef95d505977a12
x-request-id: 34daeca5a3163af5147eb7729a7a35a5
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 236647
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917638.355116,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=f3969455-4a13-403c-9f25-7328d05b1053&batch_time=1699917637912
3.233.153.145202 Accepted 53 B URL POST HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=f3969455-4a13-403c-9f25-7328d05b1053&batch_time=1699917637912
IP 3.233.153.145:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ba57329307c09aaab397f3dd3132cff9
a7c69cecf66a25423f107276414a8b7052d7a491
17a504a9a78b1ec1e561e63be29251a95653808ebfcbcda15d8bbb18d7f9aea3
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=f3969455-4a13-403c-9f25-7328d05b1053&batch_time=1699917637912 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15775
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
date: Mon, 13 Nov 2023 23:20:38 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-regular.woff
151.101.129.46200 OK 39 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-regular.woff
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format, TrueType, length 39020, version 1.0\012- data
Hash 6d82eada1d3af65a01d7a535b15ed1cc
b473e899cde33d7f903c754729ee41b46229a1e7
5e094fc97ee2575583299cc73a332e742c43a80e5fefeb3579fe3c5108c535f7
GET /app/website/static/fonts/Square%20Market/sqmarket-regular.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 39020
server: nginx
content-type: font/woff
last-modified: Mon, 16 Sep 2019 15:04:20 GMT
x-rgw-object-type: Normal
etag: "6d82eada1d3af65a01d7a535b15ed1cc"
x-amz-request-id: tx000001f6e30c978d198a2-006549773d-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f5c020bdb7a5a3708de26c321ae9f5c735ca5e31
x-request-id: 60d2bd118731c9808c2ba6b7b7453a52
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 604169
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1699917638.356400,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
151.101.129.46200 OK 41 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type Web Open Font Format, TrueType, length 41400, version 1.0\012- data
Hash ade801c572e692ed6abe4213896eccc8
82a61609a657857d3a2b2a4e12d7db9546221f22
f321df4af5ea5d9ad9d0840c3f6b332567584620efedd1fade186123abc7479e
GET /app/website/static/fonts/Square%20Market/sqmarket-medium.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41400
server: nginx
content-type: font/woff
last-modified: Tue, 15 Sep 2020 17:37:49 GMT
x-rgw-object-type: Normal
etag: "ade801c572e692ed6abe4213896eccc8"
x-amz-request-id: tx00000315f6fbb1bc3b2fe-00654b3b50-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7124b4dadfde01daf9340bde27ef95d505977a12
x-request-id: 34daeca5a3163af5147eb7729a7a35a5
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 236647
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.356371,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
199.34.228.40200 OK 235 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 206601707564872077
x-datadog-sampling-priority: 1
x-datadog-trace-id: 8969693914538900860
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000f622517d35a29562-0064386db8-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu138.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 401af88bc1a90f9391c2726220c8e94c
bt-103993.square.site/app/website/static/icons/sets/square/search.svg
199.34.228.40200 OK 253 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/search.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 8606198523662550176
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4131523417732692982
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx00000cae76eaa948a9d66-0064386dbc-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu127.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 9685cc381a4698301370391a9c20489f
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
199.34.228.40200 OK 235 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 3953613470475019472
x-datadog-sampling-priority: 1
x-datadog-trace-id: 9070624367545022668
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000fbaec5762f948c0d-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: fd47f74bad93090306e96ef49e61c220
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=bf0080a1-1abb-40ed-aeac-6f66b5912eb3&batch_time=1699917638437
3.233.153.145202 Accepted 53 B URL POST HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=bf0080a1-1abb-40ed-aeac-6f66b5912eb3&batch_time=1699917638437
IP 3.233.153.145:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 8532d3fb5f2e105f788c0cdaacc481de
e4b64cc6b53a72091f3da43a0a5a45b288c39a69
cb0051d5dc93f88dbdec244b7264312dabc49c6e4ec80cb54266d07302a5a2fd
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=bf0080a1-1abb-40ed-aeac-6f66b5912eb3&batch_time=1699917638437 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15721
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 202 Accepted
date: Mon, 13 Nov 2023 23:20:38 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
bt-103993.square.site/app/website/static/icons/sets/square/spinner.svg
199.34.228.40200 OK 205 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/spinner.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b7b85a7b3f5575bcae909da71b04d588
86442aaf9a428a95cd7b00bd52c875618c4f9cdc
a6f7da657d6f069d0ee93cabff70a26c73d180090ba83df879aed55944a92066
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/spinner.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 1454426736347705332
x-datadog-sampling-priority: 1
x-datadog-trace-id: 5197170935928899762
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 205
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "b7b85a7b3f5575bcae909da71b04d588"
x-amz-request-id: tx0000006863c8813c75fa7-0064386db9-d955bdc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: e2a54872d6de3d3d76934c3042712f82
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
199.34.228.40200 OK 235 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 7405295505779044519
x-datadog-sampling-priority: 1
x-datadog-trace-id: 8750279407800532329
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000fbaec5762f948c0d-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu82.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 7fca3ad375b46546e9dc9e136819f5ad
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]&cache-version=2023-11-13
199.34.228.40200 OK 182 B URL POST HTTP/1.1 bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]&cache-version=2023-11-13
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 7297478444241123933
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4067568164873525292
Content-Length: 89
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:38 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn10.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]&cache-version=2023-11-13
199.34.228.40200 OK 79 B URL POST HTTP/1.1 bt-103993.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]&cache-version=2023-11-13
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]&cache-version=2023-11-13 HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0=
x-datadog-origin: rum
x-datadog-parent-id: 5194156688686318852
x-datadog-sampling-priority: 1
x-datadog-trace-id: 6899835289975252221
Content-Length: 77
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 13 Nov 2023 23:20:38 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu149.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
bt-103993.square.site/app/website/static/icons/sets/square/search.svg
199.34.228.40200 OK 253 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/search.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 7185269829625810372
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4676885789834270128
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx000004ba0b82b1ab49199-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 35649ee82a00e7f463496f923c2ebad6
bt-103993.square.site/app/website/static/icons/sets/square/search.svg
199.34.228.40200 OK 253 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/search.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 8557325591580541183
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4412003415082381084
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx000004ba0b82b1ab49199-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn48.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: d1671864acbc4b21f9b5e78da4646cc0
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
199.34.228.40200 OK 235 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 416553111689043370
x-datadog-sampling-priority: 1
x-datadog-trace-id: 7461718835173001481
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000f622517d35a29562-0064386db8-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu82.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: b8fee3626f9b771b5c4bb25ebb14d85b
bt-103993.square.site/app/website/static/icons/sets/square/close.svg
199.34.228.40200 OK 235 B URL GET HTTP/1.1 bt-103993.square.site/app/website/static/icons/sets/square/close.svg
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-103993.square.site/
x-datadog-origin: rum
x-datadog-parent-id: 5825482502596684288
x-datadog-sampling-priority: 1
x-datadog-trace-id: 4574755090710811105
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:38 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000f622517d35a29562-0064386db8-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn147.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: 7cec226a30d4fbdf4cdd8d3233cb0efb
cbeac1191a3179ab82b9.cdn6.editmysite.com/uploads/b/cbeac1191a3179ab82b962445c20f2fe478607a29764c52ea8d695016f795ddf/HEHEHEKJ_1669724200.png?width=400&optimize=medium
151.101.129.46200 OK 13 kB URL GET HTTP/3 cbeac1191a3179ab82b9.cdn6.editmysite.com/uploads/b/cbeac1191a3179ab82b962445c20f2fe478607a29764c52ea8d695016f795ddf/HEHEHEKJ_1669724200.png?width=400&optimize=medium
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash c8e8f13655660c51a3800b53f9b7b973
9f2d99f6058a839683602cb9a91bb5917ddfda78
c674ad1fe09d3b477dccdbd41b968ce9bb38552b4b9fd85a664a406f26a6b252
GET /uploads/b/cbeac1191a3179ab82b962445c20f2fe478607a29764c52ea8d695016f795ddf/HEHEHEKJ_1669724200.png?width=400&optimize=medium HTTP/1.1
Host: cbeac1191a3179ab82b9.cdn6.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 12886
access-control-allow-headers: Origin, Authorization, Content-Type
access-control-allow-methods: GET, POST, DELETE, OPTIONS
access-control-allow-origin: *
content-type: image/webp
etag: "uAgC2jPD2TwEVvy1uIufWCY2dBgC+PTZbxTZFIE2wc8"
fastly-io-info: ifsz=61025 idim=1200x1200 ifmt=png ofsz=12886 odim=400x400 ofmt=webp
fastly-io-served-by: vpop-haf2300710
fastly-stats: io=1
server: nginx
x-amz-request-id: tx00000b0d3a2646949211e-0065516bf6-db1c67d-sfo1
x-rgw-object-type: Normal
x-storage-bucket: zb07c
x-storage-object: b07cf5be8ea3f83fe1cbd1c8eaa4193a677dcdc2fcf945c27e54dc7bbcd52975
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:39 GMT
age: 0
x-served-by: cache-sjc1000114-SJC, cache-bma1636-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1699917639.887379,VS0,VE222
vary: Accept
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=1bda4a3b-0af2-4ff1-9af5-537d84e29761&batch_time=1699917638959
3.233.153.145202 Accepted 53 B URL POST HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=1bda4a3b-0af2-4ff1-9af5-537d84e29761&batch_time=1699917638959
IP 3.233.153.145:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
Fingerprint90:98:16:E4:5F:36:C7:67:0F:C6:18:49:63:19:73:FC:82:36:C1:4E
ValiditySat, 17 Jun 2023 00:00:00 GMT - Tue, 18 Jun 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash e2878f6c55fd74d37f54ff3afd3113b8
7bcd140e5120cc952a0606027294727244878e49
4b458ed992ce4e68a82de9873149f89a4bf555747fe44809de5903901acfc3d0
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.44.0%2Capi%3Axhr%2Cenv%3Aproduction%2Cservice%3Aecom-square-online-buyer-journey%2Cversion%3Aprime-6c34583&dd-api-key=pubc6e7a7143c494f34f1366112ef7c1e2c&dd-evp-origin-version=4.44.0&dd-evp-origin=browser&dd-request-id=1bda4a3b-0af2-4ff1-9af5-537d84e29761&batch_time=1699917638959 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15416
Origin: https://bt-103993.square.site
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 202 Accepted
date: Mon, 13 Nov 2023 23:20:39 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
bt-103993.square.site/app/website/square.ico
199.34.228.40200 OK 6.5 kB URL GET HTTP/1.1 bt-103993.square.site/app/website/square.ico
IP 199.34.228.40:443
Requested by https://bt-103993.square.site/
Certificate IssuerDigiCert Inc
Subject*.square.site
Fingerprint5F:4C:27:EC:29:19:0C:05:88:97:9C:1F:2E:03:AC:5F:3E:32:B3:E2
ValidityFri, 10 Feb 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert OpenPhish phishing BT Group plc
PhishTank phishing Other
GET /app/website/square.ico HTTP/1.1
Host: bt-103993.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IlN4UDFCeEhpUThlWHdzMUdzQ1VsNlE9PSIsInZhbHVlIjoiNlZJVU5sMWUyUFRmWlI5eG5xUW1QZzg2dkQwajQ0SU5NUzZkalRua2hUTUp0TVBMd1BJS0pFRk9UL1VFT2dyUmF4U0JqL0Y0WmtrQXlDRjZpMUNjc2poYU5pZ2pzcmFJSC9XeGhuRXU4L0dIMHdnTXVuUVk2OHpkK0poR3J6WXciLCJtYWMiOiI1N2Q5ZDYyYWY0NTRlYTcwOTE0ZTNiOGEwNzhlNGNjODUxMDVhY2Y0NWY4YmFkN2QwOTc2ZGFhYzVhMzExNWYzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlpCKzVzdDEyT2h6MnRtQmZXcjlLOVE9PSIsInZhbHVlIjoidUV3MlEvK25BZHBqQ2pRSWNmTC9ieUUwRkZCSDlXVU42TjE1SmR1TE9OQllOSFRPbzhnTmwxcDd4dEpodW1aZGxsQlo2NlJ6dURXZWZvMVdQNUVRWEhpU0lNQllkd1lubkxQanZyK1BUMTZ0aE9BVFB5QWtFaVV5aDVSTHBpNTgiLCJtYWMiOiIxOTE3OGZiZjM2NzUyMzA0YmMwYWM5OThlZGZjYWE3MjI4OTU2MTNmNjVlN2JkMzkxNTNiZTI4ZGVlOTEyOGI5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkppbzRNTmtHS0dEWHFGbGU0NWhLZFE9PSIsInZhbHVlIjoid25icUhuejk1VmJmZTVYcjZzYzhXY29qMSt1Q3V5QkpsZ3BmTEEzdWFqYU10bzJuUDNjUHZWdGFPYWNoaHBsTWM2T0dGa0EydGVWQVNHRWZqcGxYM3hzVUFrajMwWlYySVcrcDVvbHZ6V3Z3RTIyOW9qZCtINGZaSE10Vi9VZmIiLCJtYWMiOiJkM2FmZWVkOTQzMzk1OTIyZTg0OWE2ODJhNjNkM2UxNjdmOTkzMTdiNDQyNGVlOGI3OWEwNDM5MGM0MmI1MzRlIiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=359d1baa-c225-43aa-8c59-0b42f120f3df&created=1699917636920&expire=1699918536920; websitespring-xsrf=eyJpdiI6IjNLNjR5WWMrQ3ZDa2VncjlHSTk1TkE9PSIsInZhbHVlIjoiYURSa3FaY2tKQ1AyS2xhdXVaaXhvWEtGai8zOWg1RGZzS2RSdGN1VG1XYUNiVUQrWWE2aGIvbzNacVp5YVBUN1VtSVhaZnZuSlJZYUF2eUJ1SVJFZmlNcStPd0w2em1rcWFxNURIbmRtZkFKMWIvN2orVEFkb2VTTEF0Mmp1ZE4iLCJtYWMiOiJlMjg3YmQzNTkzMzBiNTg3ZDk4ZjU5NjJiNmUxNzkwY2U4MTYxODg1MTRkN2I0YWU1ZjAzNjQ3OTVlM2Q1ZDI3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 Nov 2023 23:20:39 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a88764-00628473fc-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn147.sf2p.intern.weebly.net
X-Revision: 6c34583555a1dfeb22068056ad70cc16ad15db40
X-Request-ID: beef3d0bf493d052ce85d2b6ddd18ed6
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.129.46200 OK 75 kB URL GET HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (2512)
Hash 99bbe560926e583b8e99036251deb783
8d81b73ae06f664f9d9e53dd5829a799bf434491
648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 00:38:34 GMT
etag: "654ad88a-124fe"
expires: Thu, 23 Nov 2023 08:49:33 GMT
cache-control: max-age=1209600
x-host: grn97.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:35 GMT
age: 397862
x-served-by: cache-sjc10061-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 3452
x-timer: S1699917636.638411,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25752
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/63457.bce4a6a1251098674eaa.js
151.101.129.46200 OK 12 kB URL GET HTTP/3 cdn3.editmysite.com/app/website/js/63457.bce4a6a1251098674eaa.js
IP 151.101.129.46:443
Requested by https://bt-103993.square.site/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (9846)
Hash 56c5093da46fcb48b92d649fffe59a63
0724c53948b2cc96900e9d7b03702a0b72457321
16b5dd1aed1d8e5f0721095c33a7574c682b341d3b09b0455e0085b972037d2e
GET /app/website/js/63457.bce4a6a1251098674eaa.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-103993.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 5365
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 26 Oct 2023 18:20:00 GMT
x-rgw-object-type: Normal
etag: W/"56c5093da46fcb48b92d649fffe59a63"
x-amz-request-id: tx000007a2f9f30303b9b18-00653aae41-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63457.bce4a6a1251098674eaa.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: d0c8ccc78f85d08c2ce83c141bc5679678205587
x-request-id: 51effe3a7b0cb4c75c25f19c724a10e8
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 13 Nov 2023 23:20:38 GMT
via: 1.1 varnish
age: 1573039
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1699917638.134962,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400