Report - www.perfectlynuts.ca/

Report Overview

Submitted URL
www.perfectlynuts.ca/
IP
199.34.228.161
ASN
#27647 WEEBLY
Submitted
2023-05-26 03:32:23
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn3.editmysite.com	32188	1999-09-10	2019-02-20	2023-05-25	29 kB	1.5 MB	151.101.1.46
cdn2.editmysite.com	11564	1999-09-10	2012-10-02	2023-05-25	423 B	26 kB	151.101.65.46
sentry.io	2743	2012-04-07	2016-08-31	2023-05-25	569 B	440 B	35.188.42.15
cdn5.editmysite.com	43128	1999-09-10	2021-05-28	2023-05-25	1.4 kB	9.3 kB	151.101.1.46
rum.browser-intake-datadoghq.com	11420	2020-08-06	2020-12-16	2023-05-25	3.3 kB	1.5 kB	3.233.159.166
www.perfectlynuts.ca	unknown	2021-03-19	2022-04-26	2023-03-10	71 kB	868 kB	199.34.228.161

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-26	medium	www.perfectlynuts.ca/
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-left.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/applepay.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/googlepay.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/cms/api/v1/users/129059714/customers/coordinates
2023-05-26	medium	www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/PN%20Logo_1645571903.jpg?width=400
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/visa.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/mastercard.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/americanexpress.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/discover.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/jcb.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/interac.svg
2023-05-26	medium	www.perfectlynuts.ca/static/icons/payment-methods/afterpay.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/spinner.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/search.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/cart.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/menu.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/search.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-right.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-left.svg
2023-05-26	medium	www.perfectlynuts.ca/app/website/square.ico

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (50)

	URL	Size	First Seen	Last Seen
	cdn3.editmysite.com/app/website/js/navigation-mobile.fd8b4f0b9074ad27be3d.js	14 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/navigation-mobile.fd8b4f0b9074ad27be3d.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 0a5228fc065038f72f28b8c072789ece c0a62b2c3ac5e0781ca7dd1aa7885c1dd7ed42ca 712d4d24347fe9f5b37a4af5378644547df1fbcdd928773c760bea2c837ffd56 Loading...

	cdn3.editmysite.com/app/website/js/72617.03863affd0b92694e4ff.js	25 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/72617.03863affd0b92694e4ff.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 95447fe12e303f2126aa735e220fa791 e62b5f1f54cc904ce4d01c8124793c1ff9cc7b0c 263455b4f95981a87f9204838a79526ce7d7599dc4e1849c989ce3d19095dbe2 Loading...

	cdn3.editmysite.com/app/website/js/header-3.8b6b2b307b0e212d7dd6.js	2.5 kB	2023-05-26	2023-05-29
Pretty URL cdn3.editmysite.com/app/website/js/header-3.8b6b2b307b0e212d7dd6.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-29 05:21:04 Times Seen4 Hash 0c76e323ecf916496f84f7b66634a43c 202a58b01c428ec4995e89c6e93de93475fba92b 11c9fd1b143b69a775d366ac7a6c554383ec5f937e2be191ce1b8273fe22b1ae Loading...

	cdn3.editmysite.com/app/website/js/53737.bf1e976f7e22f116d266.js	11 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/53737.bf1e976f7e22f116d266.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash e88278930285b8e74a6f910f23c1ef9b 9d611ff08210db8ade36f3c9608d115824bee911 4f2399cf910686fddc23ff9637b335052b03564ebaaaa0dac193ad9ca5bb9fa8 Loading...

	www.perfectlynuts.ca/	140 B	2023-03-07	2024-04-27
Pretty URL www.perfectlynuts.ca/ IP 199.34.228.161 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-27 06:54:28 Times Seen12097 Hash 1fdd2479d6ba8d5520c042ef8a2777ad 383ea6d170518471e06b0bd5330c748d7d966ef4 6cd9e9dc34c5d199beb0e095738cbe706c622914eb1a4a3a4285357d5b8f81cc Loading...

	cdn3.editmysite.com/app/website/js/languages/en.e440ae8ab29f324fed1f.js	579 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/languages/en.e440ae8ab29f324fed1f.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 12:00:51 Times Seen6 Hash f174c67fa127904a9534913bd591c62c aee3abc1a17a9bb68f811b0ad280378e41bfabff 0caf86d0cf0d425832cbba76c75bea669e97cb4213cd0235a49a0a5b777cadec Loading...

	cdn3.editmysite.com/app/website/js/35272.c1cd8c90be2e9c8c426b.js	18 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/35272.c1cd8c90be2e9c8c426b.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 4ccc83f39d6a89fd486f385e1f5f3003 a5c97d808fefdc350ac0e47d4a8611fab32bea21 bbb0f92c2697fa6490c905fffff7b06cb3def9a4a83a6fa1b33875f057131578 Loading...

	cdn3.editmysite.com/app/website/js/87697.9482513e155cca6a5234.js	4.1 kB	2023-05-26	2023-09-29
Pretty URL cdn3.editmysite.com/app/website/js/87697.9482513e155cca6a5234.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-09-29 15:45:48 Times Seen3813 Hash 02d69bee66818446eb99d5f64a4bbeda 571cc1589aa5faa903c37347cfc491546d757b73 85ace63ed691c376ed9ba2ca6fa266043a5abaf0612366c6b1c841eefb752d2a Loading...

	cdn3.editmysite.com/app/website/js/58553.9df3f5d1473504eece22.js	8.8 kB	2023-05-26	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/58553.9df3f5d1473504eece22.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-11-14 00:40:19 Times Seen134 Hash 7de6c6453f3172fde33e34c64e5299b0 51788ad323b11c6d796e026f3b628eca288c460e e0f8deceb89b6e09619aa21ac685a7e411ee2149ccdf115149a031af15d36c7b Loading...

	cdn3.editmysite.com/app/website/js/88040.c423ed7b741bf8f1f504.js	21 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/88040.c423ed7b741bf8f1f504.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 05:32:31 Times Seen2 Hash 9a9475f22a2950eca8af7dbc9571b385 92b8a61ffc23771a69175766796babb743056fb5 fc8c1765044b539ab2a07e1a07b917d2ea070d9255d94c37e7107b24d73cac1f Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-04-27
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-27 06:54:29 Times Seen28806 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	unknown	1.1 kB	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-04-27 06:54:28 Times Seen14151 Hash fb1fa750e498ddf325936923cd0d356e b1ab9e64280aef735182b255db6fe273200412a8 3db13173dbd9eb042356058f38b5c9b76a30cf82ed9251c738d23eb6827502b1 Loading...

	cdn3.editmysite.com/app/website/js/runtime.2de9487308b4d5a41ec6.js	56 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/runtime.2de9487308b4d5a41ec6.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 12:00:51 Times Seen6 Hash 76735ea780e4341e4dc0ae3d86dc07c3 2411140f3db0b80b0de8fc8ff887a86c860386ee 61fcd1b19ee44f75f58fc1795c6659589f7726acd9e668e503a4f44ce2ca98c5 Loading...

	cdn3.editmysite.com/app/website/js/13535.6455a981795dbeb461eb.js	24 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/13535.6455a981795dbeb461eb.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 05:32:31 Times Seen2 Hash f132cd98491350c376ee5d39aaecf1b0 b9dc8b98d7116f35eb0810d3d59ef9e42dd9afb5 a4a13e6f9a287dda86e86e880d3fa00b2eb09a4b09748c1312e6da626f060635 Loading...

	cdn3.editmysite.com/app/website/js/69407.6b3f1dcba19f6027b4c2.js	41 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/69407.6b3f1dcba19f6027b4c2.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 5f255d1155d40e3fb90f350c9866a54b 53158ae1ad88df8213bbf08ed650d2ce94bf2144 74901ef48311651a40fb9b5e5b9a844166da57d86142130e0395f5ce7e5987d0 Loading...

	cdn3.editmysite.com/app/website/js/63871.5b3231b6ede95c169bed.js	11 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/63871.5b3231b6ede95c169bed.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 745de521eb494a58f075155cf2709582 f4bb641058d6d9bd475a646bffa8e65e2c9696ec 04db9575e0c9811e09b7eebbcfa14b4fc9ae18e1f66e005377e715cfb23bc753 Loading...

	cdn3.editmysite.com/app/website/js/92495.d90e1936ae752c5f0441.js	8.3 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/92495.d90e1936ae752c5f0441.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 3f716473b92e4a7b12381d1572534022 f18143edb4089d8809596d09199a836588df207a afc89e0aafd3285ebb12cdff91a0ee0539d78a4250252b1145de3792accb94da Loading...

	cdn3.editmysite.com/app/website/js/50774.7a419c7989044dcaf392.js	7.4 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/50774.7a419c7989044dcaf392.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-30 02:01:31 Times Seen28 Hash d13cfce16a27403a3f87c14f3e8d9e6c 07dd1759b50abaab8e4418d7864d20ea84ad4cb6 b536ba01d71fde22ddd045a25733a7d1aa3126eec46839ea50e5304bbc1fe1dd Loading...

	cdn3.editmysite.com/app/website/js/5156.7d12b512a8004a45faa2.js	54 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/5156.7d12b512a8004a45faa2.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 18:54:44 Times Seen8 Hash 547c69691b2cc4dc72dbcb83ae82a1a8 4bff67f029a98e9d6f68dbcc2a2e10e0fd6eb152 a7bbc86a001764a9fbb766e24ba91182250316c80dcf0c32b25aee8dd1889bd7 Loading...

	cdn3.editmysite.com/app/website/js/20674.8854bce89f26272d754a.js	73 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/20674.8854bce89f26272d754a.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 12:00:51 Times Seen6 Hash e7737067a5b1b2e6b35c1adfc67260d0 93dd3e784ec12341d9c988efd8c742a98e603959 93111b9169ba94f84646996278853308cce91755fccaf31807c3b39d347b9a07 Loading...

	unknown	496 B	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-04-27 06:54:28 Times Seen14393 Hash c1db72e213146c75189f4b6a82fc7f3c 3867c5fecc075a70965a96c23c59e7351b6da0d6 4d286bfbd53979af2cd45d0286d0400b8ae4da5f06b116dcc30db452b71481c1 Loading...

	cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js	177 kB	2023-05-26	2023-11-14
Pretty URL cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-11-14 01:35:16 Times Seen4272 Hash 6c4d536385ba208d7a9137ff833c16e9 b157cb47073082ea5fa4f7e79e33d2413c9d1acb 8cba77ba8bad22635b7118c172cbeba49874f062a7f30a1ce81998dd5e8bf092 Loading...

	cdn3.editmysite.com/app/website/js/44103.0e7ec85f9e8d6c297e54.js	118 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/44103.0e7ec85f9e8d6c297e54.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 05:32:31 Times Seen2 Hash b421e6b051ffb8159a5b395138d1e069 9fd9dcc76ef5abf516d2f40135f365b2c0afe9fb 069ba8716df7d44731da11e8034c8c2c3a228cb1efd9d5fd6730c3da8b40e34f Loading...

	cdn3.editmysite.com/app/website/js/58706.0ef96aad2dd5cb9f7760.js	62 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/58706.0ef96aad2dd5cb9f7760.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 05:32:31 Times Seen2 Hash 6bade58e7f244ae39a9c850b585dffcd 96e528d9c0bba7eae4fc6ef11d861a1cff1dcaa1 09c4950c5fcdf61898d8c8105d72dd302081ccad535a5670814dbd41c29c7ab4 Loading...

	cdn3.editmysite.com/app/website/js/22080.7d2cdf950a3207ae4416.js	16 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/22080.7d2cdf950a3207ae4416.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 18:54:44 Times Seen8 Hash b13ae3366633df0fa5a33859264ce7d1 692c9421c858728a2907b37405c0637e22c1e96f 98fd904c3d583433049ca9a939b96baec09d5a9b175c98ec1e6114a7a898579a Loading...

	www.perfectlynuts.ca/	0 B	2023-03-07	2024-04-27
Pretty URL www.perfectlynuts.ca/ IP 199.34.228.161 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 07:02:50 Times Seen37113814 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	956 B	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-04-27 06:54:28 Times Seen14393 Hash 03846f9824e92f5e7d3f62e8713d47c6 213d679fcd16aea7b17f05a04f4c72cbfdaaae35 217d8cf03eb4f191f072659dce350b80bc23d97219a4b55dae7f1eb96cbf16fc Loading...

	cdn3.editmysite.com/app/website/js/site.e081a7503cca9b5de6d4.js	2.1 MB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/site.e081a7503cca9b5de6d4.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:30 Last Seen2023-05-26 12:00:51 Times Seen6 Hash acfa44f8d8d5db9f6d262dce5800e97d 5d40419680581c7a9e65868bac3210b8f4bf8875 0c041ee99a1dc4cd72260aa57845a2b632c704ef7e7646950a924ec1997213ca Loading...

	cdn3.editmysite.com/app/website/js/46571.4ab11e44038662ab40f7.js	46 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/46571.4ab11e44038662ab40f7.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 05:32:31 Times Seen2 Hash 2a7cab8fc9d7ab5351720cda012e6062 70849686601b39f6d91e78c702b3bc4285e0b030 8daaf861e1c60d0994a2bfad4362b3d67c67fcc13893233e82d58ee6474f0579 Loading...

	cdn3.editmysite.com/app/website/js/gallery-3.3e617ce0d29264121373.js	748 B	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/gallery-3.3e617ce0d29264121373.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 05:32:31 Times Seen2 Hash d31eb5cc19c2c0d1fba84ce502488abb be416a396f91dc3bdeaf5819007ad3d3d1d3ee43 511706424f9c6ad7fdfb5880c93ab8e9fd101577f4a58e5083fdddc6dc326d51 Loading...

	cdn3.editmysite.com/app/website/js/53261.d506e955400f9c41e0fd.js	34 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/53261.d506e955400f9c41e0fd.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 18:54:44 Times Seen8 Hash e73845e29178e86e52d0967aae1b5361 6d1b86d34395800698843f8ea41ff6e556f885bc 1f6922d6a7163a53b64cf60f9cef22b6fe9115b1c48d6e6cb42319f51423d0e8 Loading...

	cdn3.editmysite.com/app/website/js/1795.790369abec6a9237b089.js	7.9 kB	2023-05-26	2023-11-13
Pretty URL cdn3.editmysite.com/app/website/js/1795.790369abec6a9237b089.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-11-13 03:58:06 Times Seen81 Hash 33c96eee87f90da5a4aca3a93e2f394f 61664f6c74ea2edbbe6e94911af3080c4513a9fe 348a1fa1dcbef3842ed5ddf615f0a566ff06df395acb67dbf6a1289526d84fa4 Loading...

	cdn3.editmysite.com/app/website/js/15422.e9fd81cace0c157dc89e.js	22 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/15422.e9fd81cace0c157dc89e.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 18:54:44 Times Seen8 Hash 373fc47ccec3c34372e89f8c70281c9b 6888932a9ddcaf1cd4c22b308b66786df2dc82c9 83e3142887c245d0fef9684a4534a2966d7d5be962dd04c914c934f709f755c6 Loading...

	unknown	636 B	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-04-27 06:54:28 Times Seen14394 Hash a59aaa8925f1d6db41fb89bb017255c0 07ab4c2f735e6116f0fd5009b8c758ec2e772334 0044c6e874feb009378c626cd206b98f114070caf5b3c4ca1e3cec6923756466 Loading...

	cdn3.editmysite.com/app/website/js/42379.b5129b3c8a2d01b2c259.js	12 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/42379.b5129b3c8a2d01b2c259.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 3371789b88d6672d78ae897130b1d6c8 d83c2e14582c854bc030fbbd0f1a3e048b9cc86c 5384c362e6e8d2999bb39ecdd59420041f536483c02d1b4247f505f20a788ffc Loading...

	cdn3.editmysite.com/app/website/js/63407.060e3b58eb0384be5ca1.js	11 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/63407.060e3b58eb0384be5ca1.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 05:32:31 Times Seen2 Hash 269ccc9a1e4fb048d0e2ae6b0d3280a2 2c6581af2f610684b61af6ba853421ac1a4193b4 5e3d7de8be8290f64b9d1d4da71196a4c5584ef5062f410d60fc6d7efb9f2a58 Loading...

	cdn3.editmysite.com/app/website/js/cart-1.7e3bb333e59302eea1a1.js	104 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/cart-1.7e3bb333e59302eea1a1.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 18:54:44 Times Seen8 Hash 727b8ca7344322209c02358d89dd865d 368e7d5d1daeaa8bbde5b496f4f4fc40e7462995 fb8c218fe43f6caeee6ff94003f519ce4aa41ceb21210b1f0d36140c9fe3202e Loading...

	cdn3.editmysite.com/app/website/js/85079.e67071815da42fc3f346.js	142 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/85079.e67071815da42fc3f346.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 05:32:31 Times Seen2 Hash bddb2d5720f8320369ba404b17d1c174 7d902c34d8a10236815f13206f555373d8c9d519 0764ab9e448f29c62ab9940819bf631fc7a193396f2e091d4b184629898793f4 Loading...

	unknown	804 B	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:13 Last Seen2024-04-27 06:54:28 Times Seen14394 Hash 05875b1ff70334890bde3d10abb7285c f92d9ebd14575493e8bcc646a4e3c51049c938c3 473ddf16120d811a56d372dfc3bacb4e5dee2e244d4a5760e32ab16a1a1ca839 Loading...

	cdn3.editmysite.com/app/website/js/67321.11bea5c9672c4ef9ce26.js	28 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/67321.11bea5c9672c4ef9ce26.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 7986e537e5ad1bf0ba6e5444b9f53435 cdf8202d9192031a152620b7aedb51bf52f575e9 a6db24269e06060e537c0f69b2f3b9b434f1239ff5bd2b3bb418c5ab9188b4eb Loading...

	cdn3.editmysite.com/app/website/js/90279.0703a9cae9ba8af5c8cf.js	23 kB	2023-05-26	2023-06-29
Pretty URL cdn3.editmysite.com/app/website/js/90279.0703a9cae9ba8af5c8cf.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-06-29 15:03:26 Times Seen440 Hash 4825c6df5c578c138aeaae35f8154b0a 112a6d586387abccff8e36e4f1d8e6a9965af710 f7904c341baf8864199865170f4b86efb1e4fdf4015ced022ec01c03a4f6831f Loading...

	cdn3.editmysite.com/app/website/js/25330.50db173ffacb82897034.js	9.7 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/25330.50db173ffacb82897034.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 719f5b3abed5e9ef6ddb5ca136252acf 6fdc27d681ee9f4362e6e0a30575dc707e19ba11 57a4be5c88d3f9285a4fac56080441ea8b4003f492ad6c0423fae8555b46e0fd Loading...

	cdn3.editmysite.com/app/website/js/37470.7513b42e8579c196b328.js	27 kB	2023-04-14	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/37470.7513b42e8579c196b328.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-14 09:00:01 Last Seen2023-05-26 18:54:44 Times Seen1038 Hash 04b9308109d95314e611c871d0622ae3 706485b12a895e0a0fc38ccecaaa8b5b2d611970 1302f10212f3e8d787c76cd4909d8cbf80f4bb0c34a9234323692ed914a828e6 Loading...

	cdn3.editmysite.com/app/website/js/footer-7.1a1f89ff30621284dd13.js	4.9 kB	2023-05-26	2023-10-03
Pretty URL cdn3.editmysite.com/app/website/js/footer-7.1a1f89ff30621284dd13.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-10-03 14:43:04 Times Seen4626 Hash ed54e8dd16a1c68eee6b7e4aebbe5530 8f9b348885da834faffd6d2c67ac132dc1ef2f37 f7411365afe9e16e31fe8a41458e69b6b22a4ceeb59fe48592e4df00ba70ea4c Loading...

	cdn3.editmysite.com/app/website/js/76968.04193a84e123e9ff007e.js	13 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/76968.04193a84e123e9ff007e.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-30 02:01:31 Times Seen28 Hash d68e86c6569da488dbfcdefd1b7f677d 98f8e1f367543bf2d1f6e84609fe9fcb9cdcff32 ed82f503da5774536e47de7609b4a4e39b1ff8d009bb6628df0c65e648ff6da7 Loading...

	cdn3.editmysite.com/app/website/js/59722.09814d9c9632ffde1920.js	17 kB	2023-05-26	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/59722.09814d9c9632ffde1920.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-26 18:54:44 Times Seen8 Hash 8ad8e43b3daa8cea370701e986e2c9ba 23cd5e04f5057c5ada599467c6c01967e954fca1 5c0ba6b06bd7d3c000ddeb6a4f5321d995b894fd473c67ca15426fe8e72d944a Loading...

	unknown	37 B	2023-04-11	2024-04-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-04-27 06:54:28 Times Seen231865 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js	12 kB	2023-03-07	2023-09-09
Pretty URL cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2023-09-09 01:51:06 Times Seen5973 Hash 40372ca3b0cfa19f4e5d664243108364 a47b48e207eaeda408cc63d1f201b8cfc2a06730 2dcf45da386abc134ac7a7d918fb0385920056ce12c85d75a1318bcdabad768f Loading...

	cdn3.editmysite.com/app/website/js/home-page.768a00ad496c86d04a74.js	19 kB	2023-05-26	2023-05-30
Pretty URL cdn3.editmysite.com/app/website/js/home-page.768a00ad496c86d04a74.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 05:32:31 Last Seen2023-05-30 02:01:31 Times Seen28 Hash 35923bf03176df476d5b4ca7c60ee815 5809890b5ff4c5f7b014271faee14cfdc97034b1 b14cdc8a6c576e96e0ecf813741c6deca9da67410c77f850a778645c9ea45251 Loading...

	cdn3.editmysite.com/app/website/js/36018.cbeb69c429fe957ce985.js	15 kB	2023-04-14	2023-05-26
Pretty URL cdn3.editmysite.com/app/website/js/36018.cbeb69c429fe957ce985.js IP 151.101.1.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-14 09:00:01 Last Seen2023-05-26 18:54:44 Times Seen1040 Hash 6b39899736b2878aa2bd3ed896f13b6a e1051d7156566e7201db7759e40eee31beada751 d8f1bd971d347ed5d39d3b0675ecc59fea457483879cef39eb0ac52500df2166 Loading...

HTTP Transactions (107)

URL IP Response Size

www.perfectlynuts.ca/

199.34.228.161

200 OK

14 kB

URL User Request GET HTTP/1.1
www.perfectlynuts.ca/
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (38403)
Size
14 kB (14439 bytes)
Hash
8ae0f930223b3873bdb657542f247cc0
fc4851522e23c016798b0bd568a86b61f2d16111
cc1b8fcbac5f9e41134037b99ca87054bd545504b0cef101bd07985df87bd069

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Fri, 26 May 2023 03:32:01 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; expires=Fri, 09-Jun-2023 03:32:01 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; expires=Fri, 09-Jun-2023 03:32:01 GMT; Max-Age=1209600; path=/; samesite=lax
PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; expires=Fri, 09-Jun-2023 03:32:01 GMT; Max-Age=1209600; path=/; httponly; samesite=lax
X-Host: blu46.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: b107773a305e6290f07959ffebe57c48
Content-Encoding: gzip

cdn3.editmysite.com/app/website/css/site.90425744bc19d010afba.css

151.101.1.46

200 OK

24 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/css/site.90425744bc19d010afba.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (64948), with no line terminators
Size
24 kB (24091 bytes)
Hash
10f9cbac7856af38e9b135b16777d01f
542991d6762797a54031cd2ccadb917f518956e6
1d23ef886b30b7a70453f1fe804ea626b90dcc7953fdd47ba4450b9e8c00d90c

HTTP Headers

GET /app/website/css/site.90425744bc19d010afba.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 25 May 2023 21:59:07 GMT
x-rgw-object-type: Normal
etag: W/"10f9cbac7856af38e9b135b16777d01f"
x-amz-request-id: tx000002dcdbbcf0493e91d-00646fdaac-db1eedd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 6867f04173a43f7ba2a57cd034d23992
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 19812
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 6
x-timer: S1685071922.138960,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24091
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.ba002b694c9e0525fcea.css

151.101.1.46

200 OK

27 kB

URL GET HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.ba002b694c9e0525fcea.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (64126), with no line terminators
Size
27 kB (26699 bytes)
Hash
97f0fa843adf9f29d13f49368892c129
eae324bc3efe171ac1a40d6b21460d57a1b89c36
37bcb89584a42e00d8f34a7fbd45c0b7098219bb9d4744ddde2afa46917d60c0

HTTP Headers

GET /app/checkout/assets/checkout/css/wcko.ba002b694c9e0525fcea.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 25 May 2023 21:16:07 GMT
x-rgw-object-type: Normal
etag: W/"97f0fa843adf9f29d13f49368892c129"
x-amz-request-id: tx0000057b44dd41df35bd6-00646fd0b4-db1eedd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 22335
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1685071922.139593,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26699
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js

151.101.1.46

200 OK

5.0 kB

URL GET HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (11882), with no line terminators
Size
5.0 kB (4998 bytes)
Hash
40372ca3b0cfa19f4e5d664243108364
a47b48e207eaeda408cc63d1f201b8cfc2a06730
2dcf45da386abc134ac7a7d918fb0385920056ce12c85d75a1318bcdabad768f

HTTP Headers

GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 872770
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1685071922.142371,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4998
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.65.46

200 OK

26 kB

URL GET HTTP/2
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (2512)
Size
26 kB (25752 bytes)
Hash
99bbe560926e583b8e99036251deb783
8d81b73ae06f664f9d9e53dd5829a799bf434491
648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 24 May 2023 18:54:37 GMT
etag: "646e5d6d-124fe"
expires: Thu, 08 Jun 2023 08:49:33 GMT
cache-control: max-age=1209600
x-host: blu84.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
age: 67348
x-served-by: cache-sjc10061-SJC, cache-bma1646-BMA
x-cache: HIT, HIT
x-cache-hits: 27, 787
x-timer: S1685071922.144693,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25752
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/runtime.2de9487308b4d5a41ec6.js

151.101.1.46

200 OK

26 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/runtime.2de9487308b4d5a41ec6.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (51199)
Size
26 kB (26444 bytes)
Hash
76735ea780e4341e4dc0ae3d86dc07c3
2411140f3db0b80b0de8fc8ff887a86c860386ee
61fcd1b19ee44f75f58fc1795c6659589f7726acd9e668e503a4f44ce2ca98c5

HTTP Headers

GET /app/website/js/runtime.2de9487308b4d5a41ec6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:15 GMT
x-rgw-object-type: Normal
etag: W/"76735ea780e4341e4dc0ae3d86dc07c3"
x-amz-request-id: tx000008930ad6890d0f1f8-0064700ca0-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.2de9487308b4d5a41ec6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 50a62db37d5bddcf65b692c5178042fb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6970
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071922.143469,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26444
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js

151.101.1.46

200 OK

72 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/vue-modules.59964f34ec7130d2b996.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (27360)
Size
72 kB (72167 bytes)
Hash
0af09f4e4586891f0f33944d01827790
786b780c119a813fe22368b3648a27bbb67090b6
fee99a78d692363c984633ef6e8239bc7ac711e0bfdde6d0eeb1e62f3c5025bc

HTTP Headers

GET /app/website/js/vue-modules.59964f34ec7130d2b996.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:17 GMT
x-rgw-object-type: Normal
etag: W/"0af09f4e4586891f0f33944d01827790"
x-amz-request-id: tx00000965b3c22a6276f3d-0064700ca1-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.59964f34ec7130d2b996.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 14f7f0fd718f22797f145f7df6a6c59c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6970
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071922.144811,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 72167
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/languages/en.e440ae8ab29f324fed1f.js

151.101.1.46

200 OK

157 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/languages/en.e440ae8ab29f324fed1f.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
157 kB (156597 bytes)
Hash
f174c67fa127904a9534913bd591c62c
aee3abc1a17a9bb68f811b0ad280378e41bfabff
0caf86d0cf0d425832cbba76c75bea669e97cb4213cd0235a49a0a5b777cadec

HTTP Headers

GET /app/website/js/languages/en.e440ae8ab29f324fed1f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 May 2023 21:59:12 GMT
x-rgw-object-type: Normal
etag: W/"f174c67fa127904a9534913bd591c62c"
x-amz-request-id: tx000007f77c2cb214e3c51-00646fdaa3-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.e440ae8ab29f324fed1f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 6c64522dff47632948047dac9ddc827b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 19811
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071922.144823,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 156597
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/site.e081a7503cca9b5de6d4.js

151.101.1.46

200 OK

665 kB

URL GET HTTP/2
cdn3.editmysite.com/app/website/js/site.e081a7503cca9b5de6d4.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (51263)
Size
665 kB (664711 bytes)
Hash
acfa44f8d8d5db9f6d262dce5800e97d
5d40419680581c7a9e65868bac3210b8f4bf8875
0c041ee99a1dc4cd72260aa57845a2b632c704ef7e7646950a924ec1997213ca

HTTP Headers

GET /app/website/js/site.e081a7503cca9b5de6d4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:11 GMT
x-rgw-object-type: Normal
etag: W/"acfa44f8d8d5db9f6d262dce5800e97d"
x-amz-request-id: tx00000aeef75079a1d6b4b-0064700ca1-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.e081a7503cca9b5de6d4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: c79e1ffe81ffae097e106c0af0e8dc30
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6970
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071922.141789,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 664711
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.a0dd6ab5c02d81093a4609b867104e12.json

151.101.1.46

200 OK

924 B

URL GET HTTP/3
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.a0dd6ab5c02d81093a4609b867104e12.json
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
JSON data\012- , ASCII text, with very long lines (2969), with no line terminators
Size
924 B (924 bytes)
Hash
a0dd6ab5c02d81093a4609b867104e12
2edc36f58c0ff55ba0fa46a656084bb87b007b12
a26e4cb15f90b83db263e77bc2da1d1aa55253d8ff1b8f97ec8b9f4a3f4553c8

HTTP Headers

GET /app/checkout/assets/checkout/locale-imports-map.a0dd6ab5c02d81093a4609b867104e12.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 924
server: nginx
content-type: application/json
last-modified: Tue, 23 May 2023 19:37:17 GMT
etag: W/"646d15ed-b99"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 199941
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1685071922.482088,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.f38f47e1f99602f40f717fea5c92e125.js

151.101.1.46

200 OK

3.6 kB

URL GET HTTP/3
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.f38f47e1f99602f40f717fea5c92e125.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
JSON data\012- , ASCII text, with very long lines (16859), with no line terminators
Size
3.6 kB (3581 bytes)
Hash
f38f47e1f99602f40f717fea5c92e125
2afbd1c0615a30b558b764902cc10e4d4710d519
0c56b288b61765fdca1c62bf4736ee1192721dd4447e6946c2d8dc92229f769e

HTTP Headers

GET /app/checkout/assets/checkout/imports.en.f38f47e1f99602f40f717fea5c92e125.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3581
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 May 2023 21:16:06 GMT
x-rgw-object-type: Normal
etag: W/"f38f47e1f99602f40f717fea5c92e125"
x-amz-request-id: tx000006bf5e9a08ba460e0-00646fd0ea-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.f38f47e1f99602f40f717fea5c92e125.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 22335
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071922.482079,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/63871.5b3231b6ede95c169bed.js

151.101.1.46

200 OK

4.6 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/63871.5b3231b6ede95c169bed.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (6000)
Size
4.6 kB (4607 bytes)
Hash
745de521eb494a58f075155cf2709582
f4bb641058d6d9bd475a646bffa8e65e2c9696ec
04db9575e0c9811e09b7eebbcfa14b4fc9ae18e1f66e005377e715cfb23bc753

HTTP Headers

GET /app/website/js/63871.5b3231b6ede95c169bed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4607
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"745de521eb494a58f075155cf2709582"
x-amz-request-id: tx000000679de803c16194a-0064700ca6-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63871.5b3231b6ede95c169bed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 7b773b6cd39c15d65cbff90ca53b87c2
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071923.885445,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/92495.d90e1936ae752c5f0441.js

151.101.1.46

200 OK

3.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/92495.d90e1936ae752c5f0441.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (8337)
Size
3.1 kB (3091 bytes)
Hash
3f716473b92e4a7b12381d1572534022
f18143edb4089d8809596d09199a836588df207a
afc89e0aafd3285ebb12cdff91a0ee0539d78a4250252b1145de3792accb94da

HTTP Headers

GET /app/website/js/92495.d90e1936ae752c5f0441.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3091
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"3f716473b92e4a7b12381d1572534022"
x-amz-request-id: tx000009339a6430ec0baec-0064700ca4-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/92495.d90e1936ae752c5f0441.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: a6425d6d5db036fb3574fcab9024aa2f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071923.897949,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/76968.04193a84e123e9ff007e.js

151.101.1.46

200 OK

5.4 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/76968.04193a84e123e9ff007e.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (12655)
Size
5.4 kB (5395 bytes)
Hash
d68e86c6569da488dbfcdefd1b7f677d
98f8e1f367543bf2d1f6e84609fe9fcb9cdcff32
ed82f503da5774536e47de7609b4a4e39b1ff8d009bb6628df0c65e648ff6da7

HTTP Headers

GET /app/website/js/76968.04193a84e123e9ff007e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5395
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"d68e86c6569da488dbfcdefd1b7f677d"
x-amz-request-id: tx0000031b19b5ebfd93cbb-0064700ca2-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/76968.04193a84e123e9ff007e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 6728d7fc1c7ed8ff0c2c4dde967a2faf
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071923.909811,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/50774.7a419c7989044dcaf392.js

151.101.1.46

200 OK

3.5 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/50774.7a419c7989044dcaf392.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (4211)
Size
3.5 kB (3466 bytes)
Hash
d13cfce16a27403a3f87c14f3e8d9e6c
07dd1759b50abaab8e4418d7864d20ea84ad4cb6
b536ba01d71fde22ddd045a25733a7d1aa3126eec46839ea50e5304bbc1fe1dd

HTTP Headers

GET /app/website/js/50774.7a419c7989044dcaf392.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3466
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"d13cfce16a27403a3f87c14f3e8d9e6c"
x-amz-request-id: tx00000e04c7b0df917329b-0064700c9f-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/50774.7a419c7989044dcaf392.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 562577f9e402e93d4ee8b6b4b153df47
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071923.910742,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/home-page.49484151a4d7d8ea4cc8.css

151.101.1.46

200 OK

388 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/home-page.49484151a4d7d8ea4cc8.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (855), with no line terminators
Size
388 B (388 bytes)
Hash
ac3899d97337f78e2fdabb705e11fcbe
633cd9a43a8e5d4a195ac7e798b1c66336e0abe7
6296e92840c1da6b74e6f5ceda9a486a0cb229a418a9b4bade93a70ef4b012df

HTTP Headers

GET /app/website/css/home-page.49484151a4d7d8ea4cc8.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 388
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 25 May 2023 18:06:43 GMT
x-rgw-object-type: Normal
etag: W/"ac3899d97337f78e2fdabb705e11fcbe"
x-amz-request-id: tx000006bb0e7f2a7d5da4d-00646fa431-db1c716-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8d932f1f7f108e1320735345b1c2c6944fefff3b
x-request-id: 548c01f14c6c06fc42b0b589ab79d86b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 33704
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071923.920382,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/home-page.768a00ad496c86d04a74.js

151.101.1.46

200 OK

5.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/home-page.768a00ad496c86d04a74.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (18963)
Size
5.9 kB (5857 bytes)
Hash
35923bf03176df476d5b4ca7c60ee815
5809890b5ff4c5f7b014271faee14cfdc97034b1
b14cdc8a6c576e96e0ecf813741c6deca9da67410c77f850a778645c9ea45251

HTTP Headers

GET /app/website/js/home-page.768a00ad496c86d04a74.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5857
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:11 GMT
x-rgw-object-type: Normal
etag: W/"35923bf03176df476d5b4ca7c60ee815"
x-amz-request-id: tx00000302668699288dfae-0064700ca2-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.768a00ad496c86d04a74.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 9057e2864594b27bddf29e18261754c6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:02 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1685071923.921264,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-left.svg

199.34.228.161

200 OK

216 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-left.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
216 B (216 bytes)
Hash
6aa1efc78eeaabc61f81143850c56a20
785cfb7866be5b416bd474d6c4bcac5e25b61487
00c629ac07a53a8dd92ace0c212743ef17337c75436767830a81b66c246e3074

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/chevron-left.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 216
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "6aa1efc78eeaabc61f81143850c56a20"
x-amz-request-id: tx0000042a5aa580a0f9065-0064386db8-d955ab0-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu139.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 06bc6ed243c2631881566a59257cbd40

sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7

35.188.42.15

200 OK

2 B

URL POST HTTP/1.1
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP
35.188.42.15:443
ASN
#15169 GOOGLE

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerDigiCert Inc
Subjectsentry.io
Fingerprint15:B3:B3:F7:8C:AC:CA:4E:EA:C5:B0:56:6E:00:9F:3B:62:5F:2F:A4
ValidityFri, 03 Jun 2022 00:00:00 GMT - Tue, 04 Jul 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
Content-Type: text/plain;charset=UTF-8
Content-Length: 419
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
x-envoy-upstream-service-time: 2
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

www.perfectlynuts.ca/static/icons/payment-methods/applepay.svg

199.34.228.161

200 OK

3.0 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/applepay.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Size
3.0 kB (2986 bytes)
Hash
c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001a5c248-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu78.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: ce58f1cbf1be78eee5927e8d974a4e79

www.perfectlynuts.ca/static/icons/payment-methods/googlepay.svg

199.34.228.161

200 OK

3.1 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/googlepay.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Size
3.1 kB (3115 bytes)
Hash
2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001af98ca-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn67.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 692a97e58efebd9a63ce836310a9e6f5

www.perfectlynuts.ca/app/website/cms/api/v1/users/129059714/customers/coordinates

199.34.228.161

200 OK

70 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/cms/api/v1/users/129059714/customers/coordinates
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
70 B (70 bytes)
Hash
9a067f122eb1f3b1acbfac2260633add
1aa036d009c08c46e82c2d87f60373c752d8016d
782fbb2a486907c62f63cc1988b5e5693e8369875a7ee542c3c6df5a0c116484

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/cms/api/v1/users/129059714/customers/coordinates HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0=
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Fri, 26 May 2023 03:32:03 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D; expires=Fri, 09-Jun-2023 03:32:03 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; expires=Fri, 09-Jun-2023 03:32:03 GMT; Max-Age=1209600; path=/; samesite=lax
X-Host: blu146.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: f8e36f48ab71c0349de527f4967c3e62
Content-Encoding: gzip

www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]

199.34.228.161

200 OK

201 B

URL POST HTTP/1.1
www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
201 B (201 bytes)
Hash
bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0=
Content-Length: 83
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 26 May 2023 03:32:03 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn68.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=69
Connection: Keep-Alive
Content-Type: application/json

www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/PN%20Logo_1645571903.jpg?width=400

199.34.228.161

200 OK

6.7 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/PN%20Logo_1645571903.jpg?width=400
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 400x108, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.7 kB (6726 bytes)
Hash
4924628f0dcdaa880140aaaddfd89e3e
ad2d522cc18b45bf4477a50c1bc35ff6e92e586b
42e9da9984b9c11d8e5a2d2c24252b015e01901203261e3046ec828cc0525c8e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/PN%20Logo_1645571903.jpg?width=400 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/webp
Content-Length: 6726
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "Je/ttPe5OLbnEoGhMQX4LsjHFMTt7/1yWHBVixiqbOg"
Fastly-Io-Info: ifsz=114191 idim=3600x971 ifmt=jpeg ofsz=6726 odim=400x108 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000dcef43124c7f4df5-00646ad241-db1c716-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z036d
X-Storage-Object: 036d8adcb1feba4c99fa6a7cbe6a0d2025bf60e073740ec586825b20a6a5db2c
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc1000145-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071924.632352,VS0,VE42
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu87.sf2p.intern.weebly.net

www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]

199.34.228.161

200 OK

1.5 kB

URL POST HTTP/1.1
www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
JSON data\012- , ASCII text, with very long lines (1481), with no line terminators
Size
1.5 kB (1481 bytes)
Hash
9266b79e6b89baa582419fb2828daf69
a4a2f3d8f8c852628dfcda3221115f38ad6d1f1b
e83a9477cb85c11272a876f7eb034c3ad12a789610d0cfe61108a4b9f55d7137

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0=
Content-Length: 78
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 26 May 2023 03:32:03 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu76.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 1481
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

www.perfectlynuts.ca/static/icons/payment-methods/visa.svg

199.34.228.161

200 OK

2.2 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/visa.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Size
2.2 kB (2247 bytes)
Hash
98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx000000000000033dbea75-00631274b0-c0351c8-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu41.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: d370b60f43da7d51c852d5bd8a09b224

www.perfectlynuts.ca/static/icons/payment-methods/mastercard.svg

199.34.228.161

200 OK

1.7 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/mastercard.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Size
1.7 kB (1657 bytes)
Hash
1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001a887f3-00628473fd-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu39.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 195c89b07dfdb5872784ef6abd8d1a90

www.perfectlynuts.ca/static/icons/payment-methods/americanexpress.svg

199.34.228.161

200 OK

1.2 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/americanexpress.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Size
1.2 kB (1206 bytes)
Hash
2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001ac6a0d-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu80.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 86397eeae10384fd1c4eb03523f4082e

cdn5.editmysite.com/app/store/api/v28/editor/users/129059714/sites/524044613941702465/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1

151.101.1.46

200 OK

2.8 kB

URL GET HTTP/3
cdn5.editmysite.com/app/store/api/v28/editor/users/129059714/sites/524044613941702465/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
JSON data\012- , ASCII text, with very long lines (15627), with no line terminators
Size
2.8 kB (2839 bytes)
Hash
a95a76e257c9d63677a0955294f3254a
987e34138694b1ddf1bd9b7d7ace80fa7824e4f6
2e99cc857389013c35ba032378e4d1e29c25d01ce03f72458f85dc0bf593d36c

HTTP Headers

GET /app/store/api/v28/editor/users/129059714/sites/524044613941702465/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 2839
server: nginx
content-type: application/json
cache-control: s-maxage=604800
etag: W/"33c2fa8c8fe847e721a4824604c8fe65"
access-control-allow-methods: GET, HEAD
fullcache: h
x-revision: ee9f9ddb863a641b53f8e2bc32539d8dcf4bcf78
x-request-id: 61e92330ad592f7918adb82af8be5b8f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:03 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1637-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685071924.760465,VS0,VE174
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/static/icons/payment-methods/discover.svg

199.34.228.161

200 OK

3.1 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/discover.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Size
3.1 kB (3087 bytes)
Hash
9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001a887f9-00628473fd-b9fbc20-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu139.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 584e820fee9a380c87fa3b4d4177bc88

www.perfectlynuts.ca/static/icons/payment-methods/jcb.svg

199.34.228.161

200 OK

3.9 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/jcb.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Size
3.9 kB (3876 bytes)
Hash
32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001ac6a14-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: d4f7e19083cb199a0b0cfd728d118cb2

www.perfectlynuts.ca/static/icons/payment-methods/interac.svg

199.34.228.161

200 OK

8.2 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/interac.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3717)
Size
8.2 kB (8249 bytes)
Hash
89bbc33e54641187d4fcd53a87143199
accb0052f213f69e609310ca503dacfd8ad3f55d
c3f3f3a1d32cdca31003881222772faed110f1e4b06f6e139c965b93900a8bf2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/interac.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlJZTFQ4THdETEljQjRtTXUwczQrNGc9PSIsInZhbHVlIjoib1hXdVFtZTBUUU1MT0ZsQXpKTGF4cjRZUm9uNHNETWlaOHJYSlBjZ1AwMzNhUS9hQ05zZEJkakp1T1B5dnJTaFlQTjM5bkR6S3FFRTZ4aWxuNmtRUWdONVVvQnlEY2ZwUCtHaExCRE54U1E5VDZvV1FKUi9DTlZwUG05clB0ZUQiLCJtYWMiOiJlODYzYjlmZWNmODgyMTAzMmYwYzdlMWI5NmY1MWExYjAyYjE0ZTIzNWFiZWI3MmIwMTkyNzVhZjc0Mjg5MmNlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 8249
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "89bbc33e54641187d4fcd53a87143199"
x-amz-request-id: tx000000000000001ac777e-0062847403-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn61.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: e842a2543585df5bd2f4e4c914341f4b

www.perfectlynuts.ca/static/icons/payment-methods/afterpay.svg

199.34.228.161

200 OK

2.1 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/static/icons/payment-methods/afterpay.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (665)
Size
2.1 kB (2148 bytes)
Hash
260a26946c3308e835f83022e177e1aa
3ef5afcc903a2375bc686511214c5e9e535b2342
cb0d2b4c057e2dd0c0be626a3fc89c2fbfe23a8de627f2031d1c44de406ffc35

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/afterpay.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:03 GMT
Content-Type: image/svg+xml
Content-Length: 2148
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "260a26946c3308e835f83022e177e1aa"
x-amz-request-id: tx000000000000001ae6769-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu77.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: ec446de6372daf0ab537781aeab89727

cdn3.editmysite.com/app/website/static/fonts/Square%20Market/Square%20Market.css

151.101.1.46

200 OK

393 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/Square%20Market.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text
Size
393 B (393 bytes)
Hash
a7ddbe9e253a4f3a9c6de33cf4f3ce60
121dc4d397d856ca5a65afaa1792e4c12a53132d
305ed7422238f098fb7513413aa992da0ced50741e5286ced433e30f5bf59971

HTTP Headers

GET /app/website/static/fonts/Square%20Market/Square%20Market.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 393
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 17 Sep 2019 17:09:50 GMT
x-rgw-object-type: Normal
etag: W/"a7ddbe9e253a4f3a9c6de33cf4f3ce60"
x-amz-request-id: tx00000000000000b7d07bc-00626682c3-4d6022f-las
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dac0242964acdc08ef6cc16c666026a58a1e15a5
x-request-id: 118bb1c1a071abd6cc161598c41b7f5d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 188380
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.077512,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff

151.101.1.46

200 OK

41 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Web Open Font Format, TrueType, length 41400, version 1.0\012- data
Size
41 kB (41400 bytes)
Hash
ade801c572e692ed6abe4213896eccc8
82a61609a657857d3a2b2a4e12d7db9546221f22
f321df4af5ea5d9ad9d0840c3f6b332567584620efedd1fade186123abc7479e

HTTP Headers

GET /app/website/static/fonts/Square%20Market/sqmarket-medium.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 41400
server: nginx
content-type: font/woff
last-modified: Tue, 15 Sep 2020 17:37:49 GMT
x-rgw-object-type: Normal
etag: "ade801c572e692ed6abe4213896eccc8"
x-amz-request-id: tx000002a0ffa8cd5d5008d-00645992fc-da075c0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f30e68a41c4a1bfdce5e9bbe131711e7fb6fd6c7
x-request-id: 71e46f2244847dba6ebeb10963425c2d
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 1479991
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.100681,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/53261.d506e955400f9c41e0fd.js

151.101.1.46

200 OK

14 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/53261.d506e955400f9c41e0fd.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (16588)
Size
14 kB (13811 bytes)
Hash
e73845e29178e86e52d0967aae1b5361
6d1b86d34395800698843f8ea41ff6e556f885bc
1f6922d6a7163a53b64cf60f9cef22b6fe9115b1c48d6e6cb42319f51423d0e8

HTTP Headers

GET /app/website/js/53261.d506e955400f9c41e0fd.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 13811
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"e73845e29178e86e52d0967aae1b5361"
x-amz-request-id: tx000009446502ed75d9e38-0064700ca3-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/53261.d506e955400f9c41e0fd.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: b0a490f20d015335688d0d577a6bf064
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.116268,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/35272.c1cd8c90be2e9c8c426b.js

151.101.1.46

200 OK

6.5 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/35272.c1cd8c90be2e9c8c426b.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (5899)
Size
6.5 kB (6535 bytes)
Hash
4ccc83f39d6a89fd486f385e1f5f3003
a5c97d808fefdc350ac0e47d4a8611fab32bea21
bbb0f92c2697fa6490c905fffff7b06cb3def9a4a83a6fa1b33875f057131578

HTTP Headers

GET /app/website/js/35272.c1cd8c90be2e9c8c426b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 6535
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:04 GMT
x-rgw-object-type: Normal
etag: W/"4ccc83f39d6a89fd486f385e1f5f3003"
x-amz-request-id: tx000009d91f3953bd856e2-0064700ca5-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/35272.c1cd8c90be2e9c8c426b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 7013916b5a9c4ce01cf95c2086d8e331
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.117837,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff

151.101.1.46

200 OK

41 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/sqmarket-medium.woff
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Web Open Font Format, TrueType, length 41400, version 1.0\012- data
Size
41 kB (41400 bytes)
Hash
ade801c572e692ed6abe4213896eccc8
82a61609a657857d3a2b2a4e12d7db9546221f22
f321df4af5ea5d9ad9d0840c3f6b332567584620efedd1fade186123abc7479e

HTTP Headers

GET /app/website/static/fonts/Square%20Market/sqmarket-medium.woff HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 41400
server: nginx
content-type: font/woff
last-modified: Tue, 15 Sep 2020 17:37:49 GMT
x-rgw-object-type: Normal
etag: "ade801c572e692ed6abe4213896eccc8"
x-amz-request-id: tx000002a0ffa8cd5d5008d-00645992fc-da075c0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f30e68a41c4a1bfdce5e9bbe131711e7fb6fd6c7
x-request-id: 71e46f2244847dba6ebeb10963425c2d
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 1479991
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1685071924.104260,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/72617.03863affd0b92694e4ff.js

151.101.1.46

200 OK

9.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/72617.03863affd0b92694e4ff.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (17290)
Size
9.1 kB (9076 bytes)
Hash
95447fe12e303f2126aa735e220fa791
e62b5f1f54cc904ce4d01c8124793c1ff9cc7b0c
263455b4f95981a87f9204838a79526ce7d7599dc4e1849c989ce3d19095dbe2

HTTP Headers

GET /app/website/js/72617.03863affd0b92694e4ff.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 9076
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"95447fe12e303f2126aa735e220fa791"
x-amz-request-id: tx000002451ae204bb75dcc-0064700ca6-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/72617.03863affd0b92694e4ff.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 76d25d0e43ef0b253826ba33efbf6a32
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.121525,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/navigation-mobile.d144bae5353f7db7dfc6.css

151.101.1.46

200 OK

5.0 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/navigation-mobile.d144bae5353f7db7dfc6.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (18475), with no line terminators
Size
5.0 kB (4964 bytes)
Hash
2a784e8adf6a531ee6a4817f24224d40
aff7438dd411352d5fd806f206e80c0b81fee702
ad40c70dd7f3b8494f46416f8bd07c2cf7fded30f53bf4b51b7dda5e72cf8931

HTTP Headers

GET /app/website/css/navigation-mobile.d144bae5353f7db7dfc6.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4964
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 04 May 2023 18:13:42 GMT
x-rgw-object-type: Normal
etag: W/"2a784e8adf6a531ee6a4817f24224d40"
x-amz-request-id: tx000003cb3b91d03ae1af1-00646d44b5-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 823a2e10f97959a974dc12ba33b89fa0a06bb2fa
x-request-id: 02e677c05eed34cabc89647c9e1ee720
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 189310
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.129616,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/navigation-mobile.fd8b4f0b9074ad27be3d.js

151.101.1.46

200 OK

4.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/navigation-mobile.fd8b4f0b9074ad27be3d.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (13571)
Size
4.9 kB (4861 bytes)
Hash
0a5228fc065038f72f28b8c072789ece
c0a62b2c3ac5e0781ca7dd1aa7885c1dd7ed42ca
712d4d24347fe9f5b37a4af5378644547df1fbcdd928773c760bea2c837ffd56

HTTP Headers

GET /app/website/js/navigation-mobile.fd8b4f0b9074ad27be3d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4861
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:12 GMT
x-rgw-object-type: Normal
etag: W/"0a5228fc065038f72f28b8c072789ece"
x-amz-request-id: tx0000066dd82e79605ff2c-0064700ca4-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.fd8b4f0b9074ad27be3d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 5e9e1a22ba3a118380c6413184e5de0d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.139307,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/36018.cbeb69c429fe957ce985.js

151.101.1.46

200 OK

4.0 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/36018.cbeb69c429fe957ce985.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (15161)
Size
4.0 kB (3985 bytes)
Hash
6b39899736b2878aa2bd3ed896f13b6a
e1051d7156566e7201db7759e40eee31beada751
d8f1bd971d347ed5d39d3b0675ecc59fea457483879cef39eb0ac52500df2166

HTTP Headers

GET /app/website/js/36018.cbeb69c429fe957ce985.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3985
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 13 Apr 2023 21:00:01 GMT
x-rgw-object-type: Normal
etag: W/"6b39899736b2878aa2bd3ed896f13b6a"
x-amz-request-id: tx00000cef112e8ae5fd576-0064386dbf-d95b1be-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/36018.cbeb69c429fe957ce985.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 336df1bd72bc737d421c473a38034e86d9c82ff8
x-request-id: f308a829311a0d1a61b34ee004e3bb4e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 274874
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.142556,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/5156.988bf04a7d1563d84852.css

151.101.1.46

200 OK

6.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/5156.988bf04a7d1563d84852.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (28214), with no line terminators
Size
6.8 kB (6780 bytes)
Hash
bb1b9d7965bf2271ff1b3d0aad04f482
6d951fd4b4f2be8944785366a885be7abcd7f80a
68d7b19367d39793749761337689b3c728361723b4a0a1944b0642d7c2add62e

HTTP Headers

GET /app/website/css/5156.988bf04a7d1563d84852.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 6780
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 27 Apr 2023 22:11:14 GMT
x-rgw-object-type: Normal
etag: W/"bb1b9d7965bf2271ff1b3d0aad04f482"
x-amz-request-id: tx0000084158be434d26eee-006462cb81-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: cfa998147e67535bcd1dcb59d55dbf5d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.146454,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/5156.7d12b512a8004a45faa2.js

151.101.1.46

200 OK

20 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/5156.7d12b512a8004a45faa2.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (49792)
Size
20 kB (19465 bytes)
Hash
547c69691b2cc4dc72dbcb83ae82a1a8
4bff67f029a98e9d6f68dbcc2a2e10e0fd6eb152
a7bbc86a001764a9fbb766e24ba91182250316c80dcf0c32b25aee8dd1889bd7

HTTP Headers

GET /app/website/js/5156.7d12b512a8004a45faa2.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 19465
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"547c69691b2cc4dc72dbcb83ae82a1a8"
x-amz-request-id: tx000004bb13a81922c822b-0064700ca6-db1a099-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/5156.7d12b512a8004a45faa2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 741c63668723bcdef5ed290d4be1e63a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.151542,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/25330.50db173ffacb82897034.js

151.101.1.46

200 OK

3.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/25330.50db173ffacb82897034.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (4156)
Size
3.7 kB (3700 bytes)
Hash
719f5b3abed5e9ef6ddb5ca136252acf
6fdc27d681ee9f4362e6e0a30575dc707e19ba11
57a4be5c88d3f9285a4fac56080441ea8b4003f492ad6c0423fae8555b46e0fd

HTTP Headers

GET /app/website/js/25330.50db173ffacb82897034.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3700
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:04 GMT
x-rgw-object-type: Normal
etag: W/"719f5b3abed5e9ef6ddb5ca136252acf"
x-amz-request-id: tx000007dbd3dd22f585f91-0064700ca5-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/25330.50db173ffacb82897034.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 42c0a05e86ff20da6dde0a2f39552060
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.154441,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/42379.b5129b3c8a2d01b2c259.js

151.101.1.46

200 OK

4.6 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/42379.b5129b3c8a2d01b2c259.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (7717)
Size
4.6 kB (4596 bytes)
Hash
3371789b88d6672d78ae897130b1d6c8
d83c2e14582c854bc030fbbd0f1a3e048b9cc86c
5384c362e6e8d2999bb39ecdd59420041f536483c02d1b4247f505f20a788ffc

HTTP Headers

GET /app/website/js/42379.b5129b3c8a2d01b2c259.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4596
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:04 GMT
x-rgw-object-type: Normal
etag: W/"3371789b88d6672d78ae897130b1d6c8"
x-amz-request-id: tx000008b745f265c568f37-0064700ca3-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/42379.b5129b3c8a2d01b2c259.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 761f71bddf1e7d35be5b294edd38cf55
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.156883,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/cart-1.9b1528bd3c5af8089e91.css

151.101.1.46

200 OK

5.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/cart-1.9b1528bd3c5af8089e91.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (18858), with no line terminators
Size
5.1 kB (5054 bytes)
Hash
502d7745201633eb8f9f52f276efe8d7
8bd64cc72a7473b11f40bf4f2458358c7cdbba32
ac72a958656b5c237113b1713b02339822ff5bc22dacd56acc9857e0d5638738

HTTP Headers

GET /app/website/css/cart-1.9b1528bd3c5af8089e91.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5054
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 25 May 2023 21:59:05 GMT
x-rgw-object-type: Normal
etag: W/"502d7745201633eb8f9f52f276efe8d7"
x-amz-request-id: tx000001b365694ac03a3a2-00646fdaa9-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 5cb33bc1e9706b725eb8e375867829e0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 19720
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.157659,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/cart-1.7e3bb333e59302eea1a1.js

151.101.1.46

200 OK

33 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/cart-1.7e3bb333e59302eea1a1.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (10071)
Size
33 kB (33213 bytes)
Hash
727b8ca7344322209c02358d89dd865d
368e7d5d1daeaa8bbde5b496f4f4fc40e7462995
fb8c218fe43f6caeee6ff94003f519ce4aa41ceb21210b1f0d36140c9fe3202e

HTTP Headers

GET /app/website/js/cart-1.7e3bb333e59302eea1a1.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 33213
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:08 GMT
x-rgw-object-type: Normal
etag: W/"727b8ca7344322209c02358d89dd865d"
x-amz-request-id: tx00000723db36b18a75b5a-0064700ca6-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.7e3bb333e59302eea1a1.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 6da60381c8af7f39bc4c3313911fbf6a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.158329,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/37470.7513b42e8579c196b328.js

151.101.1.46

200 OK

8.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/37470.7513b42e8579c196b328.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (21451)
Size
8.7 kB (8733 bytes)
Hash
04b9308109d95314e611c871d0622ae3
706485b12a895e0a0fc38ccecaaa8b5b2d611970
1302f10212f3e8d787c76cd4909d8cbf80f4bb0c34a9234323692ed914a828e6

HTTP Headers

GET /app/website/js/37470.7513b42e8579c196b328.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 8733
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 13 Apr 2023 21:00:01 GMT
x-rgw-object-type: Normal
etag: W/"04b9308109d95314e611c871d0622ae3"
x-amz-request-id: tx000002acd33c2e0ce6e91-0064386dbb-d95593e-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/37470.7513b42e8579c196b328.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 41c1b9b0f435b0d75b8784c7515984d35c669d44
x-request-id: f0f23b935e3f6601d0502dc15b29ac5f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 261625
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.231604,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/59722.e0cfdf0fe0dfd573ad6a.css

151.101.1.46

200 OK

5.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/59722.e0cfdf0fe0dfd573ad6a.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (22983), with no line terminators
Size
5.8 kB (5756 bytes)
Hash
f9b265317c744345b8d6cdcf790a76a7
e7011aa4f77f2dc9e10da35b9bba104df81f060f
9865f5927f3115a1d30f8e73fb0d8db5a14cda5b8f2916f6b736418ec50ba7c8

HTTP Headers

GET /app/website/css/59722.e0cfdf0fe0dfd573ad6a.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5756
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 01 May 2023 14:40:07 GMT
x-rgw-object-type: Normal
etag: W/"f9b265317c744345b8d6cdcf790a76a7"
x-amz-request-id: tx0000072710a4eecf52577-00646c7317-db1a099-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 6e1ed52a5a2d8bef9dc18284054bc596
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.235545,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/59722.09814d9c9632ffde1920.js

151.101.1.46

200 OK

7.3 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/59722.09814d9c9632ffde1920.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (14926)
Size
7.3 kB (7268 bytes)
Hash
8ad8e43b3daa8cea370701e986e2c9ba
23cd5e04f5057c5ada599467c6c01967e954fca1
5c0ba6b06bd7d3c000ddeb6a4f5321d995b894fd473c67ca15426fe8e72d944a

HTTP Headers

GET /app/website/js/59722.09814d9c9632ffde1920.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7268
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"8ad8e43b3daa8cea370701e986e2c9ba"
x-amz-request-id: tx00000579c8f6af0a69664-0064700ca3-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/59722.09814d9c9632ffde1920.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 839968451e404deb25ec5eb317b5e83a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.235704,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/22080.7d2cdf950a3207ae4416.js

151.101.1.46

200 OK

6.5 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/22080.7d2cdf950a3207ae4416.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (15569)
Size
6.5 kB (6457 bytes)
Hash
b13ae3366633df0fa5a33859264ce7d1
692c9421c858728a2907b37405c0637e22c1e96f
98fd904c3d583433049ca9a939b96baec09d5a9b175c98ec1e6114a7a898579a

HTTP Headers

GET /app/website/js/22080.7d2cdf950a3207ae4416.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 6457
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:04 GMT
x-rgw-object-type: Normal
etag: W/"b13ae3366633df0fa5a33859264ce7d1"
x-amz-request-id: tx0000000fd93588bb323bf-0064700ca3-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/22080.7d2cdf950a3207ae4416.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: e1ca51b0fc080dba0925f7b6762b1d02
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.236738,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/20674.51595a9cef532782383b.css

151.101.1.46

200 OK

4.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/20674.51595a9cef532782383b.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (19593), with no line terminators
Size
4.9 kB (4919 bytes)
Hash
74f62d5d18a5b8c1039dd04974cd913b
5e5e1d46790d39c2a33928819c6695df3fbd2b45
7d9147ad324d98bf07598022e66a0f8346a0d3fb3fed7d0d2ca09373b3999179

HTTP Headers

GET /app/website/css/20674.51595a9cef532782383b.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4919
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 25 May 2023 21:59:04 GMT
x-rgw-object-type: Normal
etag: W/"74f62d5d18a5b8c1039dd04974cd913b"
x-amz-request-id: tx000007fe721a0bf06e6fa-00646fdaa9-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: c959b45eca823153c26e19d8755762bb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.238904,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/20674.8854bce89f26272d754a.js

151.101.1.46

200 OK

25 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/20674.8854bce89f26272d754a.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (21047)
Size
25 kB (25349 bytes)
Hash
e7737067a5b1b2e6b35c1adfc67260d0
93dd3e784ec12341d9c988efd8c742a98e603959
93111b9169ba94f84646996278853308cce91755fccaf31807c3b39d347b9a07

HTTP Headers

GET /app/website/js/20674.8854bce89f26272d754a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 25349
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:03 GMT
x-rgw-object-type: Normal
etag: W/"e7737067a5b1b2e6b35c1adfc67260d0"
x-amz-request-id: tx000000059768ee18772b2-0064700ca8-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/20674.8854bce89f26272d754a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: bc2e3fb312504edbf3f8a5b910d53839
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.241074,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/header-3.104ee8149e97ef5696c5.css

151.101.1.46

200 OK

329 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/header-3.104ee8149e97ef5696c5.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (828), with no line terminators
Size
329 B (329 bytes)
Hash
db1ac585f273ec6c9e4dd9d50feff53d
b3e6568d2778587239eb7929347b5045c2fd9f19
bf829ee2721968aad4f7a14355db8ada249ce6d1f1af947ecc1aa3cc6a75b6cb

HTTP Headers

GET /app/website/css/header-3.104ee8149e97ef5696c5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 329
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Apr 2023 20:59:58 GMT
x-rgw-object-type: Normal
etag: W/"db1ac585f273ec6c9e4dd9d50feff53d"
x-amz-request-id: tx000004c1d162862c075e0-0064631860-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 92e706afbcd2a99419b8dbc148fbafe7800faaee
x-request-id: 823c51c3542bddc1e59a0a5f7aedf295
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 791246
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.243172,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/header-3.8b6b2b307b0e212d7dd6.js

151.101.1.46

200 OK

1.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/header-3.8b6b2b307b0e212d7dd6.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (2509)
Size
1.1 kB (1096 bytes)
Hash
0c76e323ecf916496f84f7b66634a43c
202a58b01c428ec4995e89c6e93de93475fba92b
11c9fd1b143b69a775d366ac7a6c554383ec5f937e2be191ce1b8273fe22b1ae

HTTP Headers

GET /app/website/js/header-3.8b6b2b307b0e212d7dd6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1096
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:11 GMT
x-rgw-object-type: Normal
etag: W/"0c76e323ecf916496f84f7b66634a43c"
x-amz-request-id: tx00000e7033246e9aa9c9e-0064700caa-db1eedd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-3.8b6b2b307b0e212d7dd6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 2bfed19b478f958d8d4daf145398ffb6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6088
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071924.243270,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=f4142679-0358-47a3-9084-f333ecf3bb64&batch_time=1685071923559

3.233.159.166

202 Accepted

53 B

URL POST HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=f4142679-0358-47a3-9084-f333ecf3bb64&batch_time=1685071923559
IP
3.233.159.166:443
ASN
#14618 AMAZON-AES

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
FingerprintD0:81:2B:99:98:CA:EE:77:E5:C5:95:9A:3D:0B:4B:39:50:33:22:F5
ValidityThu, 21 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
377aa15d872a2be9440da86efb73e10d
14f31a1b29da8fb839eaae21f7af34665c23d143
f455a09478dbbc06b3ee1701bd8bf7dc2dbc679acb3d6e45a364dd54e42080d7

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=f4142679-0358-47a3-9084-f333ecf3bb64&batch_time=1685071923559 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 16051
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 202 Accepted
date: Fri, 26 May 2023 03:32:04 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg

199.34.228.161

200 OK

235 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000fbaec5762f948c0d-0064386dbb-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu45.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: f6069ccc9341e2a167a712fee596b97a

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9ed0cc8b-d7a0-448c-a265-b5ebacdddc0b&batch_time=1685071924040

3.233.159.166

202 Accepted

53 B

URL POST HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9ed0cc8b-d7a0-448c-a265-b5ebacdddc0b&batch_time=1685071924040
IP
3.233.159.166:443
ASN
#14618 AMAZON-AES

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
FingerprintD0:81:2B:99:98:CA:EE:77:E5:C5:95:9A:3D:0B:4B:39:50:33:22:F5
ValidityThu, 21 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
d0bed3e01ffdaf0d952cd6aa2353b6da
370eb6bf68ddfce733b0769382f030fc3160c961
b9725b53afb479bb6359f309f5498951268c3fbd3965b400e6881f81e90aee9e

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=9ed0cc8b-d7a0-448c-a265-b5ebacdddc0b&batch_time=1685071924040 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15737
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 202 Accepted
date: Fri, 26 May 2023 03:32:04 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.perfectlynuts.ca/app/website/static/icons/sets/square/spinner.svg

199.34.228.161

200 OK

205 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/spinner.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
205 B (205 bytes)
Hash
b7b85a7b3f5575bcae909da71b04d588
86442aaf9a428a95cd7b00bd52c875618c4f9cdc
a6f7da657d6f069d0ee93cabff70a26c73d180090ba83df879aed55944a92066

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/spinner.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 205
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "b7b85a7b3f5575bcae909da71b04d588"
x-amz-request-id: tx000008dba9b03f5463813-0064386dba-d95593e-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn144.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 9c16f0a81dae270655bc36acb684fab9

www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg

199.34.228.161

200 OK

235 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000eaa383bf7fb2d6ab-0064386db8-d953336-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu80.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: a8e8756c33d94e4881c31cb0a8ba76ac

www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]

199.34.228.161

200 OK

182 B

URL POST HTTP/1.1
www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
182 B (182 bytes)
Hash
6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0=
Content-Length: 89
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 26 May 2023 03:32:04 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu46.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=62
Connection: Keep-Alive
Content-Type: application/json

cdn3.editmysite.com/app/website/css/85079.b5af92235421ca130c3c.css

151.101.1.46

200 OK

3.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/85079.b5af92235421ca130c3c.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (20230), with no line terminators
Size
3.9 kB (3930 bytes)
Hash
719ef9d61ed91d9c912f14f6fb4bd7ae
6c05a94914492d861764c3faa6c3dc5166f192f0
7e66c907834df89fb5db4d79a6c3ddf14ae9a37134f1e090865e7f58847228bd

HTTP Headers

GET /app/website/css/85079.b5af92235421ca130c3c.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3930
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Apr 2023 20:59:56 GMT
x-rgw-object-type: Normal
etag: W/"719ef9d61ed91d9c912f14f6fb4bd7ae"
x-amz-request-id: tx00000db25736202e1f19a-00646c61af-db1eedd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 17733f5f3e0026f6577717cb1f672b75
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.605335,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/85079.e67071815da42fc3f346.js

151.101.1.46

200 OK

46 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/85079.e67071815da42fc3f346.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
46 kB (45679 bytes)
Hash
bddb2d5720f8320369ba404b17d1c174
7d902c34d8a10236815f13206f555373d8c9d519
0764ab9e448f29c62ab9940819bf631fc7a193396f2e091d4b184629898793f4

HTTP Headers

GET /app/website/js/85079.e67071815da42fc3f346.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 45679
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"bddb2d5720f8320369ba404b17d1c174"
x-amz-request-id: tx00000645fb746fe75feb9-0064700cab-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/85079.e67071815da42fc3f346.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 4621ab2801283b06b19562da99bc4b30
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.612767,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/1795.790369abec6a9237b089.js

151.101.1.46

200 OK

2.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/1795.790369abec6a9237b089.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (7933)
Size
2.9 kB (2860 bytes)
Hash
33c96eee87f90da5a4aca3a93e2f394f
61664f6c74ea2edbbe6e94911af3080c4513a9fe
348a1fa1dcbef3842ed5ddf615f0a566ff06df395acb67dbf6a1289526d84fa4

HTTP Headers

GET /app/website/js/1795.790369abec6a9237b089.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 2860
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:03 GMT
x-rgw-object-type: Normal
etag: W/"33c96eee87f90da5a4aca3a93e2f394f"
x-amz-request-id: tx000002c30b0b63080e73b-0064700ca2-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/1795.790369abec6a9237b089.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: e560b21ded409890f47aa7115cc96116
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6088
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.634281,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/46571.4ab11e44038662ab40f7.js

151.101.1.46

200 OK

16 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/46571.4ab11e44038662ab40f7.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (24020)
Size
16 kB (15665 bytes)
Hash
2a7cab8fc9d7ab5351720cda012e6062
70849686601b39f6d91e78c702b3bc4285e0b030
8daaf861e1c60d0994a2bfad4362b3d67c67fcc13893233e82d58ee6474f0579

HTTP Headers

GET /app/website/js/46571.4ab11e44038662ab40f7.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 15665
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:04 GMT
x-rgw-object-type: Normal
etag: W/"2a7cab8fc9d7ab5351720cda012e6062"
x-amz-request-id: tx00000fe9cc359514b1bac-0064700cae-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/46571.4ab11e44038662ab40f7.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: f74da1f5cfddb15964556939bc3fd552
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6012
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.634595,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/gallery-3.d1f35f1f19bd12b7f2d4.css

151.101.1.46

200 OK

2.2 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/gallery-3.d1f35f1f19bd12b7f2d4.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (8957), with no line terminators
Size
2.2 kB (2197 bytes)
Hash
dc6088e710894c746fd9ac16003e36b0
169db03d3d2f2c14cbda57a39fad297c62571e52
c55abbf3e8f461ed1bacdb225800b10852be5b6dde93c13463644abbd04cf28e

HTTP Headers

GET /app/website/css/gallery-3.d1f35f1f19bd12b7f2d4.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 2197
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 25 May 2023 21:59:06 GMT
x-rgw-object-type: Normal
etag: W/"dc6088e710894c746fd9ac16003e36b0"
x-amz-request-id: tx000001567a080b716bfe5-00646fdaae-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: f28614e9f1681110b3590ce61d768f32
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 16359
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.636690,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]

199.34.228.161

200 OK

79 B

URL POST HTTP/1.1
www.perfectlynuts.ca/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
79 B (79 bytes)
Hash
26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0=
Content-Length: 77
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 26 May 2023 03:32:04 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn121.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=58
Connection: Keep-Alive
Content-Type: application/json

cdn3.editmysite.com/app/website/js/58553.9df3f5d1473504eece22.js

151.101.1.46

200 OK

3.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/58553.9df3f5d1473504eece22.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (8844)
Size
3.9 kB (3938 bytes)
Hash
7de6c6453f3172fde33e34c64e5299b0
51788ad323b11c6d796e026f3b628eca288c460e
e0f8deceb89b6e09619aa21ac685a7e411ee2149ccdf115149a031af15d36c7b

HTTP Headers

GET /app/website/js/58553.9df3f5d1473504eece22.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3938
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"7de6c6453f3172fde33e34c64e5299b0"
x-amz-request-id: tx0000068d1c75125a3c42c-0064700ca8-db1a051-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/58553.9df3f5d1473504eece22.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: 8c9800f4f3a9699b3fdb49eb54a7a3ee
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.640431,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/44103.0e7ec85f9e8d6c297e54.js

151.101.1.46

200 OK

18 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/44103.0e7ec85f9e8d6c297e54.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (51509)
Size
18 kB (18354 bytes)
Hash
b421e6b051ffb8159a5b395138d1e069
9fd9dcc76ef5abf516d2f40135f365b2c0afe9fb
069ba8716df7d44731da11e8034c8c2c3a228cb1efd9d5fd6730c3da8b40e34f

HTTP Headers

GET /app/website/js/44103.0e7ec85f9e8d6c297e54.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 18354
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:04 GMT
x-rgw-object-type: Normal
etag: W/"b421e6b051ffb8159a5b395138d1e069"
x-amz-request-id: tx000001157c500ed2ec8ba-0064700ca8-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/44103.0e7ec85f9e8d6c297e54.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dfe3ce659ac966ba267c89bd933c8df66fbf5d19
x-request-id: ea0c009cf10b943b06645d14806dc832
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.646502,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/88040.c423ed7b741bf8f1f504.js

151.101.1.46

200 OK

7.6 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/88040.c423ed7b741bf8f1f504.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (10186)
Size
7.6 kB (7600 bytes)
Hash
9a9475f22a2950eca8af7dbc9571b385
92b8a61ffc23771a69175766796babb743056fb5
fc8c1765044b539ab2a07e1a07b917d2ea070d9255d94c37e7107b24d73cac1f

HTTP Headers

GET /app/website/js/88040.c423ed7b741bf8f1f504.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7600
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"9a9475f22a2950eca8af7dbc9571b385"
x-amz-request-id: tx00000a4d6cd7d9141550c-0064700ca7-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/88040.c423ed7b741bf8f1f504.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: cc0ec5f47898c0ed7eefe95885f6fd3f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.652658,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/13535.6455a981795dbeb461eb.js

151.101.1.46

200 OK

9.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/13535.6455a981795dbeb461eb.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (12803)
Size
9.7 kB (9706 bytes)
Hash
f132cd98491350c376ee5d39aaecf1b0
b9dc8b98d7116f35eb0810d3d59ef9e42dd9afb5
a4a13e6f9a287dda86e86e880d3fa00b2eb09a4b09748c1312e6da626f060635

HTTP Headers

GET /app/website/js/13535.6455a981795dbeb461eb.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 9706
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:03 GMT
x-rgw-object-type: Normal
etag: W/"f132cd98491350c376ee5d39aaecf1b0"
x-amz-request-id: tx000005b7e53a917554ff1-0064700ca6-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/13535.6455a981795dbeb461eb.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 747bb3e4a9a74526e736a0b57fc72793
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6296
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.653234,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/app/website/static/icons/sets/square/search.svg

199.34.228.161

200 OK

253 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/search.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
253 B (253 bytes)
Hash
006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx00000392a288698ed484f-0064386db8-d955ab0-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu77.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 516472f58ad64328f6846141c377e781

cdn3.editmysite.com/app/website/css/19712.5a7f9b56287e13e7e93b.css

151.101.1.46

200 OK

7.0 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/19712.5a7f9b56287e13e7e93b.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (33750), with no line terminators
Size
7.0 kB (6985 bytes)
Hash
dbfc24243319990d498889ae0cf96d39
e48effd6c71d38e7bd9cff082e4103876dbb1362
ff2f88e86bc963946fbbb4a1e4adb4a6d301aa3887ff2989582418f8140a7620

HTTP Headers

GET /app/website/css/19712.5a7f9b56287e13e7e93b.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 6985
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 25 May 2023 21:59:04 GMT
x-rgw-object-type: Normal
etag: W/"dbfc24243319990d498889ae0cf96d39"
x-amz-request-id: tx00000f5b4619dd41bdfd6-00646fdab3-db1eedd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: fe8648bf2cb0125845b1bd7a1f7da651
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6211
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.661673,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/app/website/static/icons/sets/square/cart.svg

199.34.228.161

200 OK

356 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/cart.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (355)
Size
356 B (356 bytes)
Hash
ef86feb84edca39c56d6079906f304da
d229b03124aa1d3e20c931e1481e92cb0f13e337
086adda15ac56456ce3a65ffc668019359580ae320c2ad68c9e4bb1244f48210

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/cart.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 356
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "ef86feb84edca39c56d6079906f304da"
x-amz-request-id: tx00000cc1a19ae5ab319c9-0064386dbb-d953336-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu40.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: a10e1acf282a774ec16d347c128c2b86

cdn3.editmysite.com/app/website/css/58706.7b84d2e2d188b9c4b57d.css

151.101.1.46

200 OK

5.2 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/58706.7b84d2e2d188b9c4b57d.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (21501), with no line terminators
Size
5.2 kB (5155 bytes)
Hash
96449765f5c47038770e702a81ec0c92
24c839bd87d3954fbab89164a98c1a527234de14
5db4196f389e61a738818b3a02fbbba79df887acb026989967ff7eeba55b084e

HTTP Headers

GET /app/website/css/58706.7b84d2e2d188b9c4b57d.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5155
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 25 Apr 2023 18:10:22 GMT
x-rgw-object-type: Normal
etag: W/"96449765f5c47038770e702a81ec0c92"
x-amz-request-id: tx00000e97e43ae9b259d94-006462e3b3-db1c67d-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 1ce7c120a2263c763dd96c06e9dfa94a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6211
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.684688,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/58706.0ef96aad2dd5cb9f7760.js

151.101.1.46

200 OK

18 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/58706.0ef96aad2dd5cb9f7760.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (61954)
Size
18 kB (17688 bytes)
Hash
6bade58e7f244ae39a9c850b585dffcd
96e528d9c0bba7eae4fc6ef11d861a1cff1dcaa1
09c4950c5fcdf61898d8c8105d72dd302081ccad535a5670814dbd41c29c7ab4

HTTP Headers

GET /app/website/js/58706.0ef96aad2dd5cb9f7760.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 17688
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"6bade58e7f244ae39a9c850b585dffcd"
x-amz-request-id: tx00000573b5cc897a4cb87-0064700cac-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/58706.0ef96aad2dd5cb9f7760.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: fc5703541b6ffd1869c2ee6b98a683ac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6211
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.684669,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/63407.060e3b58eb0384be5ca1.js

151.101.1.46

200 OK

4.3 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/63407.060e3b58eb0384be5ca1.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (10587)
Size
4.3 kB (4274 bytes)
Hash
269ccc9a1e4fb048d0e2ae6b0d3280a2
2c6581af2f610684b61af6ba853421ac1a4193b4
5e3d7de8be8290f64b9d1d4da71196a4c5584ef5062f410d60fc6d7efb9f2a58

HTTP Headers

GET /app/website/js/63407.060e3b58eb0384be5ca1.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4274
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"269ccc9a1e4fb048d0e2ae6b0d3280a2"
x-amz-request-id: tx000001b4a5550ed257a0e-0064700cb3-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63407.060e3b58eb0384be5ca1.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 1a35dd801830ca67c34c3c4c2d1aefc8
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 4782
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.685130,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/app/website/static/icons/sets/square/menu.svg

199.34.228.161

200 OK

196 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/menu.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
196 B (196 bytes)
Hash
7eb63f2ff64f726044a6ce8cf9627dd7
0d40a515691bbceb67e0a444725a1a4f6a425500
acf5d79bfca5ac8a248a9e21f7caeff9be8161fe912f2df3dd894f719acd646d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/menu.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 196
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "7eb63f2ff64f726044a6ce8cf9627dd7"
x-amz-request-id: tx0000077520f157b721f59-0064386db8-d955bdc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn71.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 31f82282af7b4cc5f95e6017550cb3e6

cdn3.editmysite.com/app/website/css/featured-products-1.baa738130bf3586ea715.css

151.101.1.46

200 OK

648 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/featured-products-1.baa738130bf3586ea715.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (1756), with no line terminators
Size
648 B (648 bytes)
Hash
83c1b86523c7934fc67ab84efa711075
23eee5235c84f9e2acf17b760fe6c73a6ea65584
76f459216e6ec243b5b6315661b5edc8c4121b1ee0abb5f1ec9717a3130a4766

HTTP Headers

GET /app/website/css/featured-products-1.baa738130bf3586ea715.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 648
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Apr 2023 20:59:58 GMT
x-rgw-object-type: Normal
etag: W/"83c1b86523c7934fc67ab84efa711075"
x-amz-request-id: tx00000188f248a5913ca60-00645a01c3-da075c0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 823a2e10f97959a974dc12ba33b89fa0a06bb2fa
x-request-id: 1e2ac0856737acd86222eaad7f9662ff
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 173281
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.689044,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/app/website/static/icons/sets/square/search.svg

199.34.228.161

200 OK

253 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/search.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
253 B (253 bytes)
Hash
006c3ae13a499e668b1727f4d9fbbd9f
a406d5e0b641791a726dd97939e3565f5763ec50
3b9408d4db4172cd3327f011ee38f3abf4ce8f73be1e6f3b32735a4bf52a33fc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/search.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 253
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "006c3ae13a499e668b1727f4d9fbbd9f"
x-amz-request-id: tx000009bddfe8ca770272e-0064386db9-d953336-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu78.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: ff6233bfb6661dfa8183d93ca4753ee8

www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg

199.34.228.161

200 OK

235 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000f622517d35a29562-0064386db8-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu99.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 8857ab221a92e1dd3cba9d07528f0c45

cdn3.editmysite.com/app/website/js/87697.9482513e155cca6a5234.js

151.101.1.46

200 OK

1.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/87697.9482513e155cca6a5234.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (4123)
Size
1.8 kB (1814 bytes)
Hash
02d69bee66818446eb99d5f64a4bbeda
571cc1589aa5faa903c37347cfc491546d757b73
85ace63ed691c376ed9ba2ca6fa266043a5abaf0612366c6b1c841eefb752d2a

HTTP Headers

GET /app/website/js/87697.9482513e155cca6a5234.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1814
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"02d69bee66818446eb99d5f64a4bbeda"
x-amz-request-id: tx000002a52024532dea5a6-0064700ca6-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/87697.9482513e155cca6a5234.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 984517627198a7e3078b66c1f17e2abc
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.791576,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/15422.e9fd81cace0c157dc89e.js

151.101.1.46

200 OK

8.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/15422.e9fd81cace0c157dc89e.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (12275)
Size
8.7 kB (8684 bytes)
Hash
373fc47ccec3c34372e89f8c70281c9b
6888932a9ddcaf1cd4c22b308b66786df2dc82c9
83e3142887c245d0fef9684a4534a2966d7d5be962dd04c914c934f709f755c6

HTTP Headers

GET /app/website/js/15422.e9fd81cace0c157dc89e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 8684
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:03 GMT
x-rgw-object-type: Normal
etag: W/"373fc47ccec3c34372e89f8c70281c9b"
x-amz-request-id: tx0000055398843935d4c06-0064700ca4-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/15422.e9fd81cace0c157dc89e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: cdd92985f8933c425680de667b5cc5ed
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6968
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.793544,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/90279.0703a9cae9ba8af5c8cf.js

151.101.1.46

200 OK

9.9 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/90279.0703a9cae9ba8af5c8cf.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (14970)
Size
9.9 kB (9932 bytes)
Hash
4825c6df5c578c138aeaae35f8154b0a
112a6d586387abccff8e36e4f1d8e6a9965af710
f7904c341baf8864199865170f4b86efb1e4fdf4015ced022ec01c03a4f6831f

HTTP Headers

GET /app/website/js/90279.0703a9cae9ba8af5c8cf.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 9932
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"4825c6df5c578c138aeaae35f8154b0a"
x-amz-request-id: tx000006f05727e612b8e30-0064700ca2-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/90279.0703a9cae9ba8af5c8cf.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 3479e4abdc313f887aa6d620a29ed7e7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.794090,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/69407.6b3f1dcba19f6027b4c2.js

151.101.1.46

200 OK

15 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/69407.6b3f1dcba19f6027b4c2.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (20169)
Size
15 kB (14734 bytes)
Hash
5f255d1155d40e3fb90f350c9866a54b
53158ae1ad88df8213bbf08ed650d2ce94bf2144
74901ef48311651a40fb9b5e5b9a844166da57d86142130e0395f5ce7e5987d0

HTTP Headers

GET /app/website/js/69407.6b3f1dcba19f6027b4c2.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 14734
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:06 GMT
x-rgw-object-type: Normal
etag: W/"5f255d1155d40e3fb90f350c9866a54b"
x-amz-request-id: tx00000ed170972d2825992-0064700ca2-db1a132-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/69407.6b3f1dcba19f6027b4c2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 84df6c9ac842ddfa268432475d351563
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.795359,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/67321.35b99af1b08fd49df953.css

151.101.1.46

200 OK

7.1 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/67321.35b99af1b08fd49df953.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
Unicode text, UTF-8 text, with very long lines (29013), with no line terminators
Size
7.1 kB (7094 bytes)
Hash
f657418bdb0851430cc1fb92c6eec772
b3e08918aef08fb3f4a9047e4120ec5de9525364
1cadbbcf30eb26ce88cee53da0ae7bacef1f9eaefbc444bdbe83f9eda37e36fe

HTTP Headers

GET /app/website/css/67321.35b99af1b08fd49df953.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7094
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 04 May 2023 18:13:41 GMT
x-rgw-object-type: Normal
etag: W/"f657418bdb0851430cc1fb92c6eec772"
x-amz-request-id: tx0000048e4e618b3ea5df2-00646ba5d8-db1a132-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 12a1df7aeccd06b5c14afd0bb4546cbe
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.797825,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/67321.11bea5c9672c4ef9ce26.js

151.101.1.46

200 OK

9.7 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/67321.11bea5c9672c4ef9ce26.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (17182)
Size
9.7 kB (9683 bytes)
Hash
7986e537e5ad1bf0ba6e5444b9f53435
cdf8202d9192031a152620b7aedb51bf52f575e9
a6db24269e06060e537c0f69b2f3b9b434f1239ff5bd2b3bb418c5ab9188b4eb

HTTP Headers

GET /app/website/js/67321.11bea5c9672c4ef9ce26.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 9683
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"7986e537e5ad1bf0ba6e5444b9f53435"
x-amz-request-id: tx0000092fe4f079ff610fc-0064700ca3-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/67321.11bea5c9672c4ef9ce26.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 6a327b308032c2a963bdce7a86a0e599
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.798430,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css

151.101.1.46

200 OK

239 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/css/footer-7.7d9df2bbcb508697998e.css
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (622), with no line terminators
Size
239 B (239 bytes)
Hash
e0475a260378e42162f0605e782bc9ff
5dd67892cd8f5c1a1fdca46f6154ebbd42d3e870
0be3aac1ef8c956a6e70da2a16f02e500068a7928a842aac7d3993b8d2802aa6

HTTP Headers

GET /app/website/css/footer-7.7d9df2bbcb508697998e.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 239
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 09 Dec 2021 21:01:03 GMT
x-rgw-object-type: Normal
etag: W/"e0475a260378e42162f0605e782bc9ff"
x-amz-request-id: tx000001a6b522c8e12e31c-0064573d00-da09421-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: f30e68a41c4a1bfdce5e9bbe131711e7fb6fd6c7
x-request-id: 95a11b9912b44b0c2b76a1e10824462b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 1480290
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.799317,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/gallery-3.3e617ce0d29264121373.js

151.101.1.46

200 OK

489 B

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/gallery-3.3e617ce0d29264121373.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (747)
Size
489 B (489 bytes)
Hash
d31eb5cc19c2c0d1fba84ce502488abb
be416a396f91dc3bdeaf5819007ad3d3d1d3ee43
511706424f9c6ad7fdfb5880c93ab8e9fd101577f4a58e5083fdddc6dc326d51

HTTP Headers

GET /app/website/js/gallery-3.3e617ce0d29264121373.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 489
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:10 GMT
x-rgw-object-type: Normal
etag: W/"d31eb5cc19c2c0d1fba84ce502488abb"
x-amz-request-id: tx000004509ea2b87b3407c-0064700cb9-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/gallery-3.3e617ce0d29264121373.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: c84d1d7fe9c226db410df52463df8a85
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1676-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685071925.639687,VS0,VE169
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg

199.34.228.161

200 OK

235 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/close.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
235 B (235 bytes)
Hash
1daa79e586c0c88959a8a47ec95688f5
2b5ddd4643f39e9bf8406fa7dd34be3694f887e4
9eccb2c7213a769a9c16859126e2227afc4b88bce8e538e4b70feeb9c009cece

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/close.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/svg+xml
Content-Length: 235
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "1daa79e586c0c88959a8a47ec95688f5"
x-amz-request-id: tx00000eaa383bf7fb2d6ab-0064386db8-d953336-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu147.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 1833a2099e9abc5047c5e3d94ef26940

cdn3.editmysite.com/app/website/js/53737.bf1e976f7e22f116d266.js

151.101.1.46

200 OK

3.8 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/53737.bf1e976f7e22f116d266.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (8171)
Size
3.8 kB (3846 bytes)
Hash
e88278930285b8e74a6f910f23c1ef9b
9d611ff08210db8ade36f3c9608d115824bee911
4f2399cf910686fddc23ff9637b335052b03564ebaaaa0dac193ad9ca5bb9fa8

HTTP Headers

GET /app/website/js/53737.bf1e976f7e22f116d266.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3846
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:05 GMT
x-rgw-object-type: Normal
etag: W/"e88278930285b8e74a6f910f23c1ef9b"
x-amz-request-id: tx00000fab7cb530630124c-0064700ca3-db1c67d-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/53737.bf1e976f7e22f116d266.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: f36d544416702debb862b44a68fc6f3e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6969
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685071925.796064,VS0,VE16
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn3.editmysite.com/app/website/js/footer-7.1a1f89ff30621284dd13.js

151.101.1.46

200 OK

1.3 kB

URL GET HTTP/3
cdn3.editmysite.com/app/website/js/footer-7.1a1f89ff30621284dd13.js
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
ASCII text, with very long lines (4864)
Size
1.3 kB (1292 bytes)
Hash
ed54e8dd16a1c68eee6b7e4aebbe5530
8f9b348885da834faffd6d2c67ac132dc1ef2f37
f7411365afe9e16e31fe8a41458e69b6b22a4ceeb59fe48592e4df00ba70ea4c

HTTP Headers

GET /app/website/js/footer-7.1a1f89ff30621284dd13.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1292
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 May 2023 01:32:10 GMT
x-rgw-object-type: Normal
etag: W/"ed54e8dd16a1c68eee6b7e4aebbe5530"
x-amz-request-id: tx000002f373fcbeb9e88b2-0064700ca7-db1c716-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-7.1a1f89ff30621284dd13.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a580b62697998c8692491866b11219a480c1dafc
x-request-id: 30f08912ad06ff6a0f2f2c287bff057b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:04 GMT
via: 1.1 varnish
age: 6753
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1685071925.827012,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/PN%20Logo_1645571903.jpg?width=400&optimize=medium

199.34.228.161

200 OK

6.7 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/PN%20Logo_1645571903.jpg?width=400&optimize=medium
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 400x108, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.7 kB (6726 bytes)
Hash
4924628f0dcdaa880140aaaddfd89e3e
ad2d522cc18b45bf4477a50c1bc35ff6e92e586b
42e9da9984b9c11d8e5a2d2c24252b015e01901203261e3046ec828cc0525c8e

HTTP Headers

GET /uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/PN%20Logo_1645571903.jpg?width=400&optimize=medium HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:04 GMT
Content-Type: image/webp
Content-Length: 6726
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "Je/ttPe5OLbnEoGhMQX4LsjHFMTt7/1yWHBVixiqbOg"
Fastly-Io-Info: ifsz=114191 idim=3600x971 ifmt=jpeg ofsz=6726 odim=400x108 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000dcef43124c7f4df5-00646ad241-db1c716-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z036d
X-Storage-Object: 036d8adcb1feba4c99fa6a7cbe6a0d2025bf60e073740ec586825b20a6a5db2c
Via: 1.1 varnish
Age: 1
X-Served-By: cache-sjc1000087-SJC
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1685071925.761378,VS0,VE1
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn27.sf2p.intern.weebly.net
Accept-Ranges: bytes

cdn5.editmysite.com/app/store/api/v28/editor/users/129059714/sites/524044613941702465/products?page=1&per_page=50&ids[]=161&ids[]=166&ids[]=157&ids[]=226&ids[]=223&ids[]=225&visibilities[]=visible&visibilities[]=hidden&include=images,category,media_files,discounts&excluded_fulfillment=dine_in

151.101.1.46

200 OK

5.1 kB

URL GET HTTP/3
cdn5.editmysite.com/app/store/api/v28/editor/users/129059714/sites/524044613941702465/products?page=1&per_page=50&ids[]=161&ids[]=166&ids[]=157&ids[]=226&ids[]=223&ids[]=225&visibilities[]=visible&visibilities[]=hidden&include=images,category,media_files,discounts&excluded_fulfillment=dine_in
IP
151.101.1.46:443
ASN
#54113 FASTLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT

File type
JSON data\012- , ASCII text, with very long lines (46082), with no line terminators
Size
5.1 kB (5080 bytes)
Hash
eae161cd5d64fdb3becf52e23acee268
a030256e73ac8b60bc61e6eb642cc7033a66c200
d5ef17c8fac5ea1ed0aaa43fcf0194fdf2f2a13c579fc8d2be387ba6feae2a5f

HTTP Headers

GET /app/store/api/v28/editor/users/129059714/sites/524044613941702465/products?page=1&per_page=50&ids[]=161&ids[]=166&ids[]=157&ids[]=226&ids[]=223&ids[]=225&visibilities[]=visible&visibilities[]=hidden&include=images,category,media_files,discounts&excluded_fulfillment=dine_in HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 5080
server: nginx
content-type: application/json
cache-control: s-maxage=604800
served-via: es
etag: W/"65406cdba5d9e261da436160a2e122e2"
access-control-allow-methods: GET, HEAD
fullcache: h
x-revision: ee9f9ddb863a641b53f8e2bc32539d8dcf4bcf78
x-request-id: 570c1bd5ee2fa68db19c4f3827246f04
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Fri, 26 May 2023 03:32:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1676-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685071925.871707,VS0,VE191
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-right.svg

199.34.228.161

200 OK

218 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-right.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
218 B (218 bytes)
Hash
bbd88e6dc3b027a5ab92eea5c6e55a25
7468eb38879073717faf3d1c50d2e438d9f52490
60b4ea5b958f9149059bf2487b3565a3ac5a554d1598d430f2f00269c9c75466

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/chevron-right.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/svg+xml
Content-Length: 218
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "bbd88e6dc3b027a5ab92eea5c6e55a25"
x-amz-request-id: tx00000b9cac0adf537880f-0064386dbe-d9532dc-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn141.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: b138ecd9834ec7d36a6de9e3fef65527

www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-left.svg

199.34.228.161

200 OK

216 B

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/static/icons/sets/square/chevron-left.svg
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
216 B (216 bytes)
Hash
6aa1efc78eeaabc61f81143850c56a20
785cfb7866be5b416bd474d6c4bcac5e25b61487
00c629ac07a53a8dd92ace0c212743ef17337c75436767830a81b66c246e3074

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/static/icons/sets/square/chevron-left.svg HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.perfectlynuts.ca/
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/svg+xml
Content-Length: 216
Connection: keep-alive
Last-Modified: Thu, 13 Apr 2023 21:00:07 GMT
x-rgw-object-type: Normal
ETag: "6aa1efc78eeaabc61f81143850c56a20"
x-amz-request-id: tx00000ffc78e398d7aa344-0064386dba-d953336-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn67.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: 642ed66769989d70872cb940b82512e7

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=2c9b7b7a-723e-462a-9f72-6f1043f00423&batch_time=1685071924689

3.233.159.166

202 Accepted

53 B

URL POST HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=2c9b7b7a-723e-462a-9f72-6f1043f00423&batch_time=1685071924689
IP
3.233.159.166:443
ASN
#14618 AMAZON-AES

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
FingerprintD0:81:2B:99:98:CA:EE:77:E5:C5:95:9A:3D:0B:4B:39:50:33:22:F5
ValidityThu, 21 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
458ca28b6a4ae71beabbc221df19cf0e
15ad19bdf96ce8fea9d9b4f3d29aa91567c6c843
178ef4c2d0174900c64978c7e97bd4de6270d496e645187af13da111918beda3

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=2c9b7b7a-723e-462a-9f72-6f1043f00423&batch_time=1685071924689 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15851
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 202 Accepted
date: Fri, 26 May 2023 03:32:05 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=00c899dc-843d-4e2d-86e3-91cc8788c14b&batch_time=1685071925152

3.233.159.166

202 Accepted

53 B

URL POST HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=00c899dc-843d-4e2d-86e3-91cc8788c14b&batch_time=1685071925152
IP
3.233.159.166:443
ASN
#14618 AMAZON-AES

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerDigiCert Inc
Subject*.browser-intake-datadoghq.com
FingerprintD0:81:2B:99:98:CA:EE:77:E5:C5:95:9A:3D:0B:4B:39:50:33:22:F5
ValidityThu, 21 Jul 2022 00:00:00 GMT - Sat, 22 Jul 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
86feabdb7bc6358724ef499005947993
803f074cebd41a06b4167049a5a862f921976b9a
484524b5bdd2e4a87b281592eec562b8cbf41dd95baa9b435b4a8d90b365c966

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-a580b62&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=00c899dc-843d-4e2d-86e3-91cc8788c14b&batch_time=1685071925152 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15824
Origin: https://www.perfectlynuts.ca
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 202 Accepted
date: Fri, 26 May 2023 03:32:05 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-42-47_1679186578.jpg?width=1600&dpr=1

199.34.228.161

200 OK

125 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-42-47_1679186578.jpg?width=1600&dpr=1
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1210x775, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
125 kB (124560 bytes)
Hash
81b76531d3a4d0f9c395b8adddc17a0c
9124ece45384cff067dfac3f695532d718a3df93
a71fae3e1ba9d5e5c2522a1729cfe5f2c94676ddb84ac4963c40f03be90ace0f

HTTP Headers

GET /uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-42-47_1679186578.jpg?width=1600&dpr=1 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/webp
Content-Length: 124560
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "Q+RCfTDs3fBYSvc8Pb/5RJ0+8/7DnLyHzsJu1ytXb2o"
Fastly-Io-Info: ifsz=532383 idim=1210x775 ifmt=jpeg ofsz=124560 odim=1210x775 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000f2e75cfe9b7ae85b-00646e24f4-db1eedd-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z8d9e
X-Storage-Object: 8d9e1a907ab8e3cc6613583bc3f4592ac2c8772913210cd765932d50ee5f0dc2
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc1000143-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071925.032052,VS0,VE342
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu83.sf2p.intern.weebly.net

www.perfectlynuts.ca/uploads/1/2/9/0/129059714/s974838998514603322_p161_i1_w1024.jpeg?width=640&dpr=1

199.34.228.161

200 OK

9.3 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/1/2/9/0/129059714/s974838998514603322_p161_i1_w1024.jpeg?width=640&dpr=1
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.3 kB (9330 bytes)
Hash
48f4a2cdb7b18278dae84cbc5ab339f0
850eec3a7371126c4c52b8cfedaaa90508ec9939
c0eb690fbebda9d9b26008c6d76e4e8d3b9dbe91768dd295655b7f91bb824c29

HTTP Headers

GET /uploads/1/2/9/0/129059714/s974838998514603322_p161_i1_w1024.jpeg?width=640&dpr=1 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/webp
Content-Length: 9330
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "PoOpS2f/9kF6zrylROwupt1gIDEpdRNraaEgCFkMxHM"
Fastly-Io-Info: ifsz=25486 idim=1024x1024 ifmt=jpeg ofsz=9330 odim=640x640 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000035b9cfad9cfd500-00646d4419-db1a051-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: za57e
X-Storage-Object: a57e6d01b49b8acf6f92c47e0ad32c5ba77ea5588d7937d0952364583c5cec80
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc10063-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071926.723248,VS0,VE60
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu77.sf2p.intern.weebly.net

www.perfectlynuts.ca/uploads/1/2/9/0/129059714/s974838998514603322_p157_i1_w1024.jpeg?width=640&dpr=1

199.34.228.161

200 OK

9.8 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/1/2/9/0/129059714/s974838998514603322_p157_i1_w1024.jpeg?width=640&dpr=1
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.8 kB (9788 bytes)
Hash
68f1f65ae6d15cb3a1edadcf0415eaa5
560f1a7d7cd05db820e526af473753275fdf9b22
56be0b4db605db61060a7788bccffefea660f3b0d2e131bca41370c946849331

HTTP Headers

GET /uploads/1/2/9/0/129059714/s974838998514603322_p157_i1_w1024.jpeg?width=640&dpr=1 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/webp
Content-Length: 9788
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "+EsNBcLkHJBYVuqV3xiu6cc8L2+xahaoIeGDSyMs+G8"
Fastly-Io-Info: ifsz=26237 idim=1024x1024 ifmt=jpeg ofsz=9788 odim=640x640 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx0000069ed274bf9aaf4dd-00646a4106-db1c67d-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: zbdd2
X-Storage-Object: bdd22d47d6ee80b5d104c87fad5bc26fd1c1f16b855bd2f1b49f38d5f5a3f768
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc1000093-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071926.732034,VS0,VE63
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn14.sf2p.intern.weebly.net

www.perfectlynuts.ca/uploads/1/2/9/0/129059714/s974838998514603322_p166_i2_w2000.jpeg?width=640&dpr=1

199.34.228.161

200 OK

8.1 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/1/2/9/0/129059714/s974838998514603322_p166_i2_w2000.jpeg?width=640&dpr=1
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
8.1 kB (8096 bytes)
Hash
2839204f7a9a694946f33d856786ba9f
f0044218f810c2b57d207a4ae1e308aa42543afd
437fbedef3ce970bc6266bee661e66e53f200b2fada6ba0d6e2b00b7ce03f066

HTTP Headers

GET /uploads/1/2/9/0/129059714/s974838998514603322_p166_i2_w2000.jpeg?width=640&dpr=1 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/webp
Content-Length: 8096
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "uHum12/WoRGMi5lbLNOy3zsmoRSa+LlALRCwyGtEyNc"
Fastly-Io-Info: ifsz=423025 idim=2000x2000 ifmt=jpeg ofsz=8096 odim=640x640 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000aedd8aaf6a04a5c9-00646bfd51-db1a132-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z9c9d
X-Storage-Object: 9c9d93cb3717d3918bd026dfb16b7eb9606583aee58a9a15efb8baa342fb7997
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc10023-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071926.732305,VS0,VE123
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn32.sf2p.intern.weebly.net

www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-34-29_1679186105.jpg?width=1600&dpr=1

199.34.228.161

200 OK

356 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-34-29_1679186105.jpg?width=1600&dpr=1
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 907x1209, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
356 kB (355684 bytes)
Hash
e1a843b506af16b5752263b5cc617406
7e2788ea6b36fb2b23ffd3b133f8c4f216afa082
f4e894e827cea4c9857fa1821481f5298e59b28a2bdd45d8abec54b455d3a4b4

HTTP Headers

GET /uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-34-29_1679186105.jpg?width=1600&dpr=1 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/webp
Content-Length: 355684
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "EHRwim2Kf4s5Mk7Ft1eTcTtWIjEb3y/XtxDQLhaJPfg"
Fastly-Io-Info: ifsz=1518506 idim=907x1209 ifmt=jpeg ofsz=355684 odim=907x1209 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000cca4c4c87856dddb-006465c869-db1c716-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: ze8b4
X-Storage-Object: e8b430b666fb2efd55d2a87a5e0cf67811dded6f83e26b0fde7cf09f1c5e46a2
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc1000095-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071925.026345,VS0,VE425
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn41.sf2p.intern.weebly.net

www.perfectlynuts.ca/app/website/square.ico

199.34.228.161

200 OK

6.5 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/app/website/square.ico
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
6.5 kB (6518 bytes)
Hash
d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /app/website/square.ico HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:06 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001a5c165-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn141.sf2p.intern.weebly.net
X-Revision: a580b62697998c8692491866b11219a480c1dafc
X-Request-ID: ada577eaf8940d5dd28a0184e237ddc9

www.perfectlynuts.ca/uploads/b/99accf10-9435-11ec-b923-f321e0772622/icon_180x180_ios_NjQ0MD.png?width=180

199.34.228.161

200 OK

1.4 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/b/99accf10-9435-11ec-b923-f321e0772622/icon_180x180_ios_NjQ0MD.png?width=180
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.4 kB (1368 bytes)
Hash
5384e08de187f5f2efc47c391e8f3f10
7cab72d82bbaa9197a5afafd589eb17e8ec8df89
f7165a79f42b4651eb33f6f4d02b504fa0c760bfc1305916c7fbd701b84b8006

HTTP Headers

GET /uploads/b/99accf10-9435-11ec-b923-f321e0772622/icon_180x180_ios_NjQ0MD.png?width=180 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:06 GMT
Content-Type: image/webp
Content-Length: 1368
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "9lb7ZD8ib33SObpyAtWJFS8kuYIFOok7uCMd2Cs1Dsk"
Fastly-Io-Info: ifsz=2311 idim=180x180 ifmt=png ofsz=1368 odim=180x180 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000a300db9c8ea34520-0064702836-db1a051-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: zfe42
X-Storage-Object: fe42938bb3c62c5803664b9c54b1569fa77727303be0ba034b934012e4111e74
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc10028-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071926.233430,VS0,VE98
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn25.sf2p.intern.weebly.net

www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-30-15_1679185828.jpg?width=1600&dpr=1

199.34.228.161

200 OK

267 kB

URL GET HTTP/1.1
www.perfectlynuts.ca/uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-30-15_1679185828.jpg?width=1600&dpr=1
IP
199.34.228.161:443
ASN
#27647 WEEBLY

Requested by
https://www.perfectlynuts.ca/
Certificate
IssuerLet's Encrypt
Subjectwww.perfectlynuts.ca
FingerprintAA:F1:56:1E:59:03:18:12:BD:0E:FE:AB:8C:2C:63:5D:78:7D:63:AF
ValidityFri, 10 Mar 2023 02:42:02 GMT - Thu, 08 Jun 2023 02:42:01 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1512x2016, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
267 kB (266934 bytes)
Hash
58ff256ca00d67603f1c688bf91ca80a
1c4ab682c99194bdc289f3f963d978b588f4bda4
88abbfec399cd1ad7b4ad254cffb88ba4d5702310bba32d43255dbf2548f85b1

HTTP Headers

GET /uploads/b/825f960815f1b480a6a7b95d39d2377556ca9d4b10512fbc86182d8d94fe2182/2023-03-18_17-30-15_1679185828.jpg?width=1600&dpr=1 HTTP/1.1
Host: www.perfectlynuts.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.perfectlynuts.ca/
Cookie: publishedsite-xsrf=eyJpdiI6IlVmb2Y4MW5BRzU3NW85TlVyT0tFQWc9PSIsInZhbHVlIjoicy9BWm5uOGxHdG1VLzdhZHN2cnhGemw0c2JGc0RIc1hWWlZVMDdxMG5kUExWaUlUMGJKWnZ6MW5RYlRsWmFlZlZOU3RYdzZNN2dXTkFjdGgyV2FUR2pReWVtZmtScDlqNHZmS3NxYmVIbUp6VG5yZVhFMFF2bFp6SEhRT2pTTmIiLCJtYWMiOiI1N2ZmNzU3YzM2ZDg2YjY0YWM1YTI1M2RmOTRiYzRiNTIwMWI2M2ZiNjY0NWVkNzk4ZmRkOTIzNzI5YjAxMzhjIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InBSSUdIQkZDczgreWlOenBlNHZzNGc9PSIsInZhbHVlIjoiZFZHOGU1MkpTNDNoWGdYSmNiazk1Y0pJS2dwMTFmRHg0OTd3VUgrcUQ5a000R3o1YmhXQUUxZjlXdW1jNm1HTzRmY0NuVGJSOXl6US9Ga0pLM0xNdDJLNThwL2ZRRmovc0tTQzc1Wk03RUpNSnJlcFFiZWZHbTdOaDREUjR3cmoiLCJtYWMiOiJjNzIzMzFhODdlNmYzODdhN2U0NjEwZWM5YWQzMDUxNTFkNzYxYjc2MTIxNzAzNjM4ZGZlNmJjOWZjZjNkMjQ5IiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImFNQUMraG5RcFNzWERXNmx3NVlFQkE9PSIsInZhbHVlIjoiYlhEeVF0REhpOWFWSnIzQ1N0MDV6TjExMmRRS21HSnlOVXZrYThBRWpOQWRhWmlaT0pOZ1d2U0hKaEpCSEdJa0tsem1YemtHcUM1d3pDTThuMDdSZDIxZWNxVEZuM0luU0NBcGI3RkxMdGNiWmIvcmNad29aTExnWTQrU0ZUU2kiLCJtYWMiOiJmNTdjZjI3M2Y0ZjkxZTI3MDhlYmQwZTcyZTJhZDM5YzVjZjdiZmZhZTY3MWE1MzA2YTJkM2QzZjE1MjJjNzc1IiwidGFnIjoiIn0%3D; _dd_s=rum=1&id=36dc6609-9cb4-4908-97da-e371a5527456&created=1685071922605&expire=1685072822605; websitespring-xsrf=eyJpdiI6IkFCSXF3SU9WTFdTcm05T2ZnKzBqcGc9PSIsInZhbHVlIjoiMmk4T1hTT2sxeW1FSytUWkxQMWpCUjhFYy9JOFNMQXo1Q2M2VGIyTGRLR3A2T2tXbzh1S244cTVTejVGWjBZam9FNjN3Q0xaVjhQMk5XWEtvSWRXWE1nREJQU2hyMWFlN2VDVDV3KzlRQ0g1UU5uNTJTcnJka1UrRmV3V0ZYQ3UiLCJtYWMiOiI5NDE5ZDI5MmY0NWY1MTcxZGE2MmVkYWMxNDRlOTg1MDdjYjk3YTQ4MmY3NjhhY2E1ZGIyZmY2ZDVjZmMwYzliIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 03:32:05 GMT
Content-Type: image/webp
Content-Length: 266934
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "0o93hI+eP4RDH+2wMl2bkiwZ8wVnKkKYmfFC5dy4LyQ"
Fastly-Io-Info: ifsz=1556647 idim=1512x2016 ifmt=jpeg ofsz=266934 odim=1512x2016 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx000007ec0c68f49569e3d-0064702835-db1a099-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z615a
X-Storage-Object: 615a40f3829f843f791133e8599a77cc5f5d8b26575937a75d05c4e1f765afeb
Accept-Ranges: bytes
Via: 1.1 varnish
Age: 0
X-Served-By: cache-sjc10042-SJC
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685071925.026073,VS0,VE569
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn27.sf2p.intern.weebly.net

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (50)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML