urlquery - report: att-102966.square.site/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
att-102966.square.site (11)	0	2022-11-28 05:38:46 UTC	2022-11-28 05:38:46 UTC	199.34.228.39	Domain (square.site) ranked at: 22579
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-28 05:46:10 UTC	34.117.237.239
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	52.89.217.163
cdn3.editmysite.com (8)	32188	No data	No data	151.101.85.46
ocsp.sca1b.amazontrust.com (2)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	143.204.42.158
r3.o.lencr.org (6)	344	No data	No data	23.36.77.32
ocsp.digicert.com (3)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
sentry.io (1)	2743	2016-08-31 05:38:44 UTC	2022-11-28 05:32:29 UTC	35.188.42.15
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-28 05:55:58 UTC	34.102.187.140
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
ocsp.entrust.net (1)	1208	2014-01-10 02:18:45 UTC	2020-04-24 21:44:37 UTC	104.110.10.32
att-102966.square.site (11)	0	2022-11-28 05:38:46 UTC	2022-11-28 05:38:46 UTC	199.34.228.40	Domain (square.site) ranked at: 22579
cdn2.editmysite.com (1)	11564	2012-11-02 14:27:29 UTC	2020-04-29 06:59:26 UTC	151.101.85.46
ocsp.globalsign.com (2)	2075	2012-07-20 17:46:16 UTC	2020-05-02 20:58:10 UTC	104.18.21.226
ec.editmysite.com (4)	12806	2018-09-03 10:26:45 UTC	2020-04-22 02:18:25 UTC	44.232.247.128
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
cdn5.editmysite.com (1)	43128	No data	No data	151.101.85.46
rum.browser-intake-datadoghq.com (2)	11420	No data	No data	3.233.155.163

Scan Date	Severity	Indicator	Comment
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.
2022-11-27	2	att-102966.square.site/	AT&T Inc.

Scan Date	Severity	Indicator	Comment
2022-11-28	2	att-102966.square.site/	Phishing
2022-11-28	2	att-102966.square.site/	Phishing
2022-11-28	2	att-102966.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSq (...)	Phishing
2022-11-28	2	att-102966.square.site/uploads/b/20d90140-6d5c-11ed-8d23-cffedacf2c7a/icon_ (...)	Phishing
2022-11-28	2	att-102966.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentat (...)	Phishing
2022-11-28	2	att-102966.square.site/app/website/cms/api/v1/users/143987215/customers/coo (...)	Phishing
2022-11-28	2	att-102966.square.site/square.ico	Phishing
2022-11-28	2	att-102966.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCo (...)	Phishing
2022-11-28	2	att-102966.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCu (...)	Phishing
2022-11-28	2	att-102966.square.site/uploads/b/488d198f1bb75516603317e483d6850a504bfbfec1 (...)	Phishing
2022-11-28	2	att-102966.square.site/app/website/square.ico	Phishing

Date	UQ / IDS / BL	URL	IP
2023-02-05 13:08:19 +0000	15 - 0 - 36	att-104845.square.site/	199.34.228.40
2023-02-05 12:28:35 +0000	0 - 1 - 24	btinternet-104247loginformconfirmnotice.squar (...)	199.34.228.40
2023-02-04 13:01:39 +0000	0 - 0 - 5	aol-100601-101396.square.site/	199.34.228.40
2023-02-04 12:57:17 +0000	0 - 0 - 28	mainnetconnect.square.site/	199.34.228.40
2023-02-03 12:54:37 +0000	0 - 0 - 33	att-104443.square.site/	199.34.228.40

Date	UQ / IDS / BL	URL	IP
2023-02-05 16:08:33 +0000	0 - 0 - 18	printablemom.com/	199.34.228.164
2023-02-05 14:52:44 +0000	0 - 0 - 5	att-106942.weeblysite.com/	199.34.228.97
2023-02-05 14:38:45 +0000	0 - 0 - 5	att-108645-100332.weeblysite.com/	199.34.228.96
2023-02-05 14:14:28 +0000	0 - 0 - 22	mail-103100.weeblysite.com/	199.34.228.96
2023-02-05 14:11:48 +0000	0 - 0 - 15	mail-102801.weeblysite.com/	199.34.228.97

Date	UQ / IDS / BL	URL	IP
2023-02-05 13:08:19 +0000	15 - 0 - 36	att-104845.square.site/	199.34.228.40
2023-02-05 12:28:35 +0000	0 - 1 - 24	btinternet-104247loginformconfirmnotice.squar (...)	199.34.228.40
2023-02-05 01:42:55 +0000	0 - 0 - 24	hhjghhk.square.site/	199.34.228.39
2023-02-05 01:42:35 +0000	0 - 0 - 24	attyahoo-108678-101910.square.site/	199.34.228.39
2023-02-05 01:42:22 +0000	0 - 0 - 22	net-uploads-data-loads.square.site/	199.34.228.39

Date	UQ / IDS / BL	URL	IP
2022-11-28 07:06:11 +0000	0 - 0 - 22	att-103225.square.site/	199.34.228.39

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1" Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4064 Expires: Mon, 28 Nov 2022 08:13:55 GMT Date: Mon, 28 Nov 2022 07:06:11 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: cdbad2434b7d127a4fc769807a9dc3e7 Sha1: fa98cd9fc2309ab4423f33f683d17bdb17d76713 Sha256: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 406 Cache-Control: 'max-age=158059' Date: Mon, 28 Nov 2022 07:06:11 GMT Last-Modified: Mon, 28 Nov 2022 06:59:25 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 64b2a23eab6e5ae8c010ec7242be930c Sha1: 0673e4385ba01a5a245711bab96cafc34f765793 Sha256: 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 28 Nov 2022 06:19:32 GMT cache-control: public,max-age=3600 age: 2799 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: d130218d0e2841f39c99610fe1a2ab90 Sha1: 29fbe1e177ee55c7a61ae0a206afff271cf5f945 Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5011 Expires: Mon, 28 Nov 2022 08:29:42 GMT Date: Mon, 28 Nov 2022 07:06:11 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 3b56944f0e5716fd4fad2ec18994d4be Sha1: 61cafa4de31ba960d1145ec37272f6f6b6944e0c Sha256: 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: nHHrOoAdX0lrENtxAaaC5MpM2n9xb7chIJk6gOqFLmXVjbgf3YOSWaAJqqikP2nYWOqNhMrC07Poy/FL4V3vXQ== x-amz-request-id: D4M0954AKWRBDAJ6 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 28 Nov 2022 06:41:57 GMT age: 1454 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET / HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: att-102966.square.site/ FQDN: att-102966.square.site IP: 199.34.228.39 HASH: b60eec7f324ebe12f10ddcf93d4975fbdcbf46ef99a557fa68ce274d6ad5152d 199.34.228.39 HTTP/1.1 302 Found Content-Type: text/html; charset=UTF-8 Server: nginx Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, private Date: Mon, 28 Nov 2022 07:06:11 GMT Location: https://att-102966.square.site Set-Cookie: publishedsite-xsrf=eyJpdiI6IlwvWm55WXVOazB0VW5mWXVuMjhQdWl3PT0iLCJ2YWx1ZSI6IlRxUHhXaVgrSzMxS3ZTUWEwRFZ6djhcLzdYclgzd0ptUzhNU3hxN01tbnNnejlEaE1zOXE4ck9MMm9kclRzZWlTRUh4TDVKU1RqTWF6aTkxWlBacnBqcnA2T0lYZDkrMmcwc04yS0hNNW90V3RiRmFrdngrRVg3QkRzbmw4U0gzWSIsIm1hYyI6ImMyYzhjOWZiZDc3MWVjZmY4MDljYTcyNDU4YzVlNzQ0NmUyZDdiYTJhZjBmMGI2OTllNGZjMjEwYThiNWM1MzUifQ%3D%3D; expires=Mon, 12-Dec-2022 07:06:11 GMT; Max-Age=1209600; path=/ XSRF-TOKEN=eyJpdiI6IkFDd1JscEh2RUJLYWZKdEs2ZWdMWGc9PSIsInZhbHVlIjoiM1RUb3dPWlV1RytneXk5eUhpOVl5UldQaXZ2amhXKzZpVDVYdHN2XC93YWdiTUVzaU1SV0ZoUWtjWG9DbDJPbzI4alZ1R291YlVWTmgyNXprdDI2Q2dvQUh1akRLa0E4dkxFTW5MREdvZ1wvTlpwXC80OFhYM0hDNllqVWZ1MmRNOEMiLCJtYWMiOiIwMzkwNWRlMmFiOWM3YjVmNWRhYWI4OWM0YTNkNjg0ZTg2MjZkNzkwMjBjZTAyZjM0MmM4OGQ3MzFiZjE2MzFiIn0%3D; expires=Mon, 12-Dec-2022 07:06:11 GMT; Max-Age=1209600; path=/ PublishedSiteSession=eyJpdiI6Ino0R1ZRcHNVWHVRUXdORWNPY2dmcEE9PSIsInZhbHVlIjoiVjNONWxWTnJrclZGRUJnK3ZrVmdUTCtsNFpMOTl6cFlOeXJZS2N4WDhrUVgwUCszNEJpaXBxM1FhVnYyd3Vsb3JLcmJjdjlsTmRGRU5HdlBzZVlRbFZZSSttTGVjNGUzbVVKVEZmcUE5QlFJK1JPT1JpTTYycnhuZEdUSzlFV2MiLCJtYWMiOiIwZTIyNzgxMGZlMzVmYjBjYzIxYWU2NGI4NjNiMjllMTk2YmU3YTFiNWNiYzAzZTI1ZmQ2ZjlkNWRjZTNiNDg1In0%3D; expires=Mon, 12-Dec-2022 07:06:11 GMT; Max-Age=1209600; path=/; httponly X-Host: blu84.sf2p.intern.weebly.net X-Revision: 8b6d9d887a47f8cceadf99cb849a3347de2cf18d X-Request-ID: 8b3ab3cc899a3821f4c9ba78a470b1f7 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 366 Md5: a43deb32ded71e0a0075e50b78d6c30a Sha1: dfd096ba71c411e10ec3cbbd88806276ebbbd38b Sha256: b60eec7f324ebe12f10ddcf93d4975fbdcbf46ef99a557fa68ce274d6ad5152d Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Mon, 28 Nov 2022 07:06:11 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 28 Nov 2022 06:11:12 GMT cache-control: public,max-age=3600 age: 3299 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.entrust.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.entrust.net/ FQDN: ocsp.entrust.net IP: 104.110.10.32 HASH: 6a2eb36f91265b9950c8b51071bd56466f724c99898b05b7e8f041acd1459085 104.110.10.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response ETag: "6A2EB36F91265B9950C8B51071BD56466F724C99898B05B7E8F041ACD1459085" Last-Modified: Sun, 27 Nov 2022 22:00:00 UTC Content-Length: 1588 Cache-Control: public, no-transform, must-revalidate, max-age=3551 Expires: Mon, 28 Nov 2022 08:05:22 GMT Date: Mon, 28 Nov 2022 07:06:11 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 1588 Md5: 19f51efb854ccfbb0d420828e57ad7dd Sha1: 4b94719f49e2222518cd03df034b13b49f7441b3 Sha256: 6a2eb36f91265b9950c8b51071bd56466f724c99898b05b7e8f041acd1459085
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4864 Cache-Control: max-age=98505 Date: Mon, 28 Nov 2022 07:06:11 GMT Etag: "638328ac-1d7" Expires: Tue, 29 Nov 2022 10:27:56 GMT Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a6fee11dfe1b88cd768a0ca3e2bd0c89 Sha1: 59cec9a44a4a92467678afe65f347f68641a2174 Sha256: 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
GET / HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: att-102966.square.site/ FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 5acce28fdbecd2d0322eab106a272983635a0976f5f494a798e2a32b20a9e959 199.34.228.40 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Cache-Control: no-cache, private Date: Mon, 28 Nov 2022 07:06:12 GMT Set-Cookie: publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; expires=Mon, 12-Dec-2022 07:06:12 GMT; Max-Age=1209600; path=/ XSRF-TOKEN=eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9; expires=Mon, 12-Dec-2022 07:06:12 GMT; Max-Age=1209600; path=/ PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; expires=Mon, 12-Dec-2022 07:06:12 GMT; Max-Age=1209600; path=/; httponly X-Host: grn85.sf2p.intern.weebly.net X-Revision: 8b6d9d887a47f8cceadf99cb849a3347de2cf18d X-Request-ID: 7d91c60d7d8b18a589939c4271626de5 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20082) Size: 9115 Md5: 504d0d202b24133b64241ec6cdca6365 Sha1: ad0f309f8998490422ffd014f919cde8ef1f881d Sha256: 5acce28fdbecd2d0322eab106a272983635a0976f5f494a798e2a32b20a9e959 Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: cgP1iLNxcC+s+mQLfXifyA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.89.217.163 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.89.217.163 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 2tLy5Ihi5CUp8JelWHheutsvnzQ= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/website/css/site.1212ec71ad4b7ff5f443.css HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn3.editmysite.com/app/website/css/site.1212ec71ad4b7f (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: ef25fa02ff6fba3fa3c90616e1ddbea7d9695867b40a81889074051552b7fff5 151.101.85.46 HTTP/2 200 OK content-type: text/css; charset=utf-8 server: nginx last-modified: Wed, 09 Nov 2022 21:23:11 GMT x-rgw-object-type: Normal etag: W/"c22f38a806467cd0cdff32ec647019f0" x-amz-request-id: tx00000000000002d07c203-00636c1aa2-c67eadd-sfo1 expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-revision: 64414abb58e4acfdd0b6e55daa9d9489195edb4b x-request-id: 463ecf92fd5e50a7617749451e59789e content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 1153330 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1669619172.254933,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 23817 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (64930), with no line terminators Size: 23817 Md5: 95f18bd4635781a99daed1dd3de8adc1 Sha1: ac08c18cc726deed47eb6b8f68ec3b5239a2fd91 Sha256: ef25fa02ff6fba3fa3c90616e1ddbea7d9695867b40a81889074051552b7fff5
GET /app/checkout/assets/checkout/css/wcko.577957259b9178e25575.css HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: cdn3.editmysite.com/app/checkout/assets/checkout/css/wc (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: 286ee096d03d0f9e94833359780ff046c322ba1ea9be4a432a1ae6a89970ecb5 151.101.85.46 HTTP/2 200 OK content-type: text/css; charset=utf-8 server: nginx last-modified: Wed, 09 Nov 2022 21:41:51 GMT x-rgw-object-type: Normal etag: W/"2a31fcbf4eb69762b720ec1ef08544e0" x-amz-request-id: tx00000000000002d0bf7b3-00636c1f88-c67eadd-sfo1 expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 1588788 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1669619172.255116,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 22873 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (64270), with no line terminators Size: 22873 Md5: d4a7cac8be5683713ff6e8d0784011f2 Sha1: e2a97aa958426f4a35d0428ba833ced0c6cc6042 Sha256: 286ee096d03d0f9e94833359780ff046c322ba1ea9be4a432a1ae6a89970ecb5
GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn3.editmysite.com/app/checkout/assets/checkout/js/sys (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: 0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac 151.101.85.46 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 server: nginx last-modified: Tue, 29 Mar 2022 18:09:33 GMT x-rgw-object-type: Normal etag: W/"40372ca3b0cfa19f4e5d664243108364" x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1 sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 1143911 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 3 x-timer: S1669619172.256321,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 4998 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (11882), with no line terminators Size: 4998 Md5: 20a4e66f534b80396d40bbc4291b2172 Sha1: d7c962996f2715d94483be2bf9b644c7185d7ec7 Sha256: 0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
GET /app/website/js/runtime.804692d3761600aae434.js HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn3.editmysite.com/app/website/js/runtime.804692d37616 (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: 179c3ed055b4d6728fcbb6d9ec17527d89711987880c89b1b34492b5d9c5034e 151.101.85.46 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 server: nginx last-modified: Tue, 22 Nov 2022 21:36:59 GMT x-rgw-object-type: Normal etag: W/"80770f38983ca9114298689b2f771c1b" x-amz-request-id: tx000000000000036fcbdf8-00637d4153-c6aed46-sfo1 sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.804692d3761600aae434.js.map expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-revision: 8b6d9d887a47f8cceadf99cb849a3347de2cf18d x-request-id: de66cf5ce4d828ffa86ec169d38f2186 content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 465935 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 2 x-timer: S1669619172.257494,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 24966 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (50950) Size: 24966 Md5: 3b60093f03d45e216f18b8d318e7d871 Sha1: a6ce580f9ba25ef9188a8b88442da334336f27d7 Sha256: 179c3ed055b4d6728fcbb6d9ec17527d89711987880c89b1b34492b5d9c5034e
GET /js/wsnbn/snowday262.js HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn2.editmysite.com/js/wsnbn/snowday262.js FQDN: cdn2.editmysite.com IP: 151.101.85.46 HASH: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75 151.101.85.46 HTTP/2 200 OK content-type: application/javascript server: nginx last-modified: Wed, 23 Nov 2022 18:03:15 GMT etag: "637e6063-124fe" expires: Thu, 08 Dec 2022 08:38:41 GMT cache-control: max-age=1209600 x-host: grn145.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT age: 340050 x-served-by: cache-sjc10061-SJC, cache-bma1646-BMA x-cache: HIT, HIT x-cache-hits: 36, 3219 x-timer: S1669619172.265241,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 25752 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (2512) Size: 25752 Md5: 234327230add9a5a5d61a48829ea4565 Sha1: 7966cc0e4bd76f88ff193c8a99a067de804b7129 Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /app/website/js/vue-modules.9bc3531c7b14b533b653.js HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn3.editmysite.com/app/website/js/vue-modules.9bc3531c (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: 77ba93a6fbe46719dede0298898f4d896c073a42d0c093179615edf38f1fd0e5 151.101.85.46 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 server: nginx last-modified: Mon, 24 Oct 2022 20:40:22 GMT x-rgw-object-type: Normal etag: W/"be42f69ec175a01b6e195526f58dae71" x-amz-request-id: tx00000000000002109ab7c-006356f891-c695612-sfo1 sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.9bc3531c7b14b533b653.js.map expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-revision: 1d15aad34e0d20a973977ec67b3bf5090814a6cf x-request-id: f2d07942d6e3e48efaf38632576a5abf content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 2176043 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1669619172.258760,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 72192 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (27432) Size: 72192 Md5: f4b29141d74cfc31ae87b2379bf827c6 Sha1: d3cecf2609cbc423e0a59e9cad96c96595fc550c Sha256: 77ba93a6fbe46719dede0298898f4d896c073a42d0c093179615edf38f1fd0e5
GET /app/website/js/languages/en.d69f032602a9a8656bf8.js HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn3.editmysite.com/app/website/js/languages/en.d69f032 (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: f602fdff3225656b0f2b2c829c952f284590b4fa25de447146a9208335a849ea 151.101.85.46 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 server: nginx last-modified: Thu, 03 Nov 2022 23:25:35 GMT x-rgw-object-type: Normal etag: W/"88da55c6ac5b86a27462f8794b300ba2" x-amz-request-id: tx0000000000000278488a3-0063644e55-c6aed46-sfo1 sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.d69f032602a9a8656bf8.js.map expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-revision: 5b106465564fd8cfdc25e96fbccd2ff9dcb7a0ec x-request-id: d06a245b8fc77a19a7522567339564c9 content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 2100920 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1669619172.258113,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 151425 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 151425 Md5: 614f055b0efefbf483b909e5dd20bd4b Sha1: 2721e7fe99f743ec65a6782d0778e3a23cb17b5c Sha256: f602fdff3225656b0f2b2c829c952f284590b4fa25de447146a9208335a849ea
GET /app/website/js/site.8f328ad98fec9cda5623.js HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdn3.editmysite.com/app/website/js/site.8f328ad98fec9cd (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: 541c8ccb46b1adbecbe40ddf1d075ba17b530a233a8cfd5413c3da9a2c8bc73e 151.101.85.46 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 server: nginx last-modified: Tue, 22 Nov 2022 21:36:59 GMT x-rgw-object-type: Normal etag: W/"359b11869f7a104316adf383efc5bdee" x-amz-request-id: tx0000000000000384172d7-00637d4150-c695612-sfo1 sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.8f328ad98fec9cda5623.js.map expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-revision: 8b6d9d887a47f8cceadf99cb849a3347de2cf18d x-request-id: bf29b9340fd9be23a5d7dec7795fbd26 content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 465935 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1669619172.259401,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 623975 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (50430) Size: 623975 Md5: 535be035beccab2e29f494729228dc4b Sha1: d60eb0034b5f3a2b4a005070bee9507a5ee14746 Sha256: 541c8ccb46b1adbecbe40ddf1d075ba17b530a233a8cfd5413c3da9a2c8bc73e
GET /app/checkout/assets/checkout/locale-imports-map.be14e50d1628faa410488f65362a397d.json HTTP/1.1 Host: cdn3.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://att-102966.square.site/ Origin: https://att-102966.square.site Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: cdn3.editmysite.com/app/checkout/assets/checkout/locale (...) FQDN: cdn3.editmysite.com IP: 151.101.85.46 HASH: e630015425b5298e0f7db7e397850913ea94d317beba50978a9df8e8364334ae 151.101.85.46 HTTP/2 200 OK content-type: application/json server: nginx last-modified: Mon, 07 Nov 2022 22:17:43 GMT etag: W/"63698407-64b" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:12 GMT via: 1.1 varnish age: 1753739 x-served-by: cache-bma1646-BMA x-cache: HIT x-cache-hits: 4 x-timer: S1669619172.349753,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 325 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (1611), with no line terminators Size: 325 Md5: be5c6eec9cf3e92f8df759e392e01209 Sha1: e0bff726136f738e6a1fe3e991d9a64dcf46d23a Sha256: e630015425b5298e0f7db7e397850913ea94d317beba50978a9df8e8364334ae
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3 FQDN: ocsp.globalsign.com IP: 104.18.21.226 HASH: a997bbb45cef3a4410e00cc6bbcc918cece672c9c478e21d37c7d822c79db378 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 07:06:12 GMT Transfer-Encoding: chunked Connection: keep-alive Etag: "549B86D14FC88AC4E93798E6125DB3BB512AAC34" Expires: Mon, 28 Nov 2022 17:00:00 GMT Last-Modified: Mon, 28 Nov 2022 05:00:00 UTC Cache-Control: s-maxage=3600, public, no-transform, must-revalidate CF-Cache-Status: HIT Age: 3273 Vary: Accept-Encoding Server: cloudflare CF-RAY: 7711427329371c06-OSL --- Additional Info --- Magic: data Size: 1462 Md5: a420efacd6085bbbb9b15ea506098bb4 Sha1: 6253f4ab1146f992725eda48ecd4f416824c1e55 Sha256: a997bbb45cef3a4410e00cc6bbcc918cece672c9c478e21d37c7d822c79db378
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3 FQDN: ocsp.globalsign.com IP: 104.18.21.226 HASH: a997bbb45cef3a4410e00cc6bbcc918cece672c9c478e21d37c7d822c79db378 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 07:06:12 GMT Transfer-Encoding: chunked Connection: keep-alive Etag: "549B86D14FC88AC4E93798E6125DB3BB512AAC34" Expires: Mon, 28 Nov 2022 17:00:00 GMT Last-Modified: Mon, 28 Nov 2022 05:00:00 UTC Cache-Control: s-maxage=3600, public, no-transform, must-revalidate CF-Cache-Status: HIT Age: 3273 Vary: Accept-Encoding Server: cloudflare CF-RAY: 7711427338ebb511-OSL --- Additional Info --- Magic: data Size: 1462 Md5: a420efacd6085bbbb9b15ea506098bb4 Sha1: 6253f4ab1146f992725eda48ecd4f416824c1e55 Sha256: a997bbb45cef3a4410e00cc6bbcc918cece672c9c478e21d37c7d822c79db378
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.158 HASH: f0bda1b41e9f570bacdd6a9e7aa4dabe70f7a62697fe3469bb9958a84ec71571 143.204.42.158 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=125645 Date: Mon, 28 Nov 2022 07:06:12 GMT Etag: "6383a1a3-1d7" Expires: Tue, 29 Nov 2022 18:00:17 GMT Last-Modified: Sun, 27 Nov 2022 17:42:59 GMT Server: ECS (nyb/1D2A) X-Cache: Miss from cloudfront Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: tdoUtWDAiVY8qPL5P7dXQAsPN89uhtG4MpdABhUZzB3C0HLLJXqRTg== Age: 1038 --- Additional Info --- Magic: data Size: 471 Md5: 43f411ea449c964cff67f17987f882b4 Sha1: 5eb4efaf34efc9b68f4ae4ebc8f51d9073f944cf Sha256: f0bda1b41e9f570bacdd6a9e7aa4dabe70f7a62697fe3469bb9958a84ec71571
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.158 HASH: f0bda1b41e9f570bacdd6a9e7aa4dabe70f7a62697fe3469bb9958a84ec71571 143.204.42.158 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=127378 Date: Mon, 28 Nov 2022 07:06:12 GMT Etag: "6383a1a3-1d7" Expires: Tue, 29 Nov 2022 18:29:10 GMT Last-Modified: Sun, 27 Nov 2022 17:42:59 GMT Server: ECS (bsa/EB21) X-Cache: Miss from cloudfront Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: -jt__OYLDIWLL4OWVaMDD0UXZHF80ehWvYG49MxEITDsViaMCDsvfw== Age: 2771 --- Additional Info --- Magic: data Size: 471 Md5: 43f411ea449c964cff67f17987f882b4 Sha1: 5eb4efaf34efc9b68f4ae4ebc8f51d9073f944cf Sha256: f0bda1b41e9f570bacdd6a9e7aa4dabe70f7a62697fe3469bb9958a84ec71571
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://att-102966.square.site/ Origin: https://att-102966.square.site Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 FQDN: ec.editmysite.com IP: 44.232.247.128 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 44.232.247.128 HTTP/2 200 OK date: Mon, 28 Nov 2022 07:06:13 GMT content-length: 0 server: nginx access-control-allow-origin: https://att-102966.square.site access-control-allow-credentials: true access-control-allow-headers: Content-Type, SP-Anonymous access-control-max-age: 600 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=utf-8 X-XSRF-TOKEN: eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9 Content-Length: 78 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619172.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/ajax/api/JsonRPC/Commerce/?Comme (...) FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 70ae7ceacfc3b311b00d9e2f2282a2ec6c1d3212d6e0fc7477629736445e318f 199.34.228.40 HTTP/1.1 200 OK Content-Type: application/json Date: Mon, 28 Nov 2022 07:06:13 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: grn140.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 894 Keep-Alive: timeout=10, max=75 Connection: Keep-Alive --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (894), with no line terminators Size: 894 Md5: 9dc0e4ca2db3792617b1461f35820789 Sha1: 80b7801f0b2f0be402ee00b7a9c41716ea480ad8 Sha256: 70ae7ceacfc3b311b00d9e2f2282a2ec6c1d3212d6e0fc7477629736445e318f Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3620 Expires: Mon, 28 Nov 2022 08:06:33 GMT Date: Mon, 28 Nov 2022 07:06:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3620 Expires: Mon, 28 Nov 2022 08:06:33 GMT Date: Mon, 28 Nov 2022 07:06:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3620 Expires: Mon, 28 Nov 2022 08:06:33 GMT Date: Mon, 28 Nov 2022 07:06:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3620 Expires: Mon, 28 Nov 2022 08:06:33 GMT Date: Mon, 28 Nov 2022 07:06:13 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aebda342a81ad83f60d2523f54ccda67 Sha1: e590d9326e4a283e0929a8ffccb13cc4308af0e6 Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1 Host: sentry.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://att-102966.square.site/ Content-Type: text/plain;charset=UTF-8 Origin: https://att-102966.square.site Content-Length: 429 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d (...) FQDN: sentry.io IP: 35.188.42.15 HASH: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a 35.188.42.15 HTTP/1.1 200 OK Content-Type: application/json Server: nginx Date: Mon, 28 Nov 2022 07:06:13 GMT Content-Length: 2 Connection: keep-alive access-control-allow-origin: https://att-102966.square.site access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after vary: Origin x-envoy-upstream-service-time: 1 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 2 Md5: 99914b932bd37a50b983c5e7c90ae93b Sha1: bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9430 x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR7wyGCIIAMFhgw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:01:46 GMT age: 32667 etag: "075531f525e625b117b2497f31139c9824d0e9c5" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9430 Md5: 1f434933b5bd6377d299ada22d1ae7ef Sha1: 075531f525e625b117b2497f31139c9824d0e9c5 Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7556 x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR78KFTmoAMF4yg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 70UuQl2XCoplrZYENrKleE2mcvB-xP9zZGs8Tuh21NidSiHvA97sXw== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:51:09 GMT age: 33304 etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7556 Md5: 7e5051d8c06f69e1842a9295ce256a36 Sha1: 1a542a53ba0b1cd0fb23257ebed8166555f16dfb Sha256: a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11165 x-amzn-requestid: 9e35d865-adea-4d2a-b20f-beb014cdd42f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR6_JE2VIAMFYgQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d860-7cf4db38152cdfa1448cba3d;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT x-amz-cf-pop: SFO5-C3, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 4YRocKXYUOkfho0bEHNX0xMxhhKNH2Cm3XtQDtQK7x2dFOsipPjfCw== via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:26:45 GMT age: 31168 etag: "65941dd34eb1063a3f7fe2b6790a11a484a06b9a" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11165 Md5: a8935783026c10470f60033d3a860f7b Sha1: 65941dd34eb1063a3f7fe2b6790a11a484a06b9a Sha256: e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f14adca-9ca8-4ff4-8a3e-4620f8c1e8f8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 9894d998a884f2b5637bd12b0cd3df556835ea7a3134eb0f516fc03e3d31c26c 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8568 x-amzn-requestid: da2726a2-20ad-4201-b4e9-3de9be88a485 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR7-BHcUIAMFieA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d9f3-370921803a9de7e627682c94;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:15 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: MPWvdL-woEL21aHiMtzg--1Z1p2w9y0XTGxb445LyuMVlWTp4nsMQw== via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:16:30 GMT age: 31783 etag: "16096289cd354fada56dbb3f2d75d406ae8ab62f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8568 Md5: 13f4c2b3410532b6c756990f1759da46 Sha1: 16096289cd354fada56dbb3f2d75d406ae8ab62f Sha256: 9894d998a884f2b5637bd12b0cd3df556835ea7a3134eb0f516fc03e3d31c26c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4708 x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR6_JFbXIAMFc_g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 6FSZ3Zw-s95LlrU3skAr5_g6m36c9SQ9_6vA3HFbMKYTTFzJRBJ76w== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:26:43 GMT age: 31170 etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4708 Md5: 4060284252d32701c42e2df4a83970a0 Sha1: a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da Sha256: 53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10119 x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR782HEZIAMFTKQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:51:40 GMT age: 33273 etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10119 Md5: 15bd53848c7082464273007e010c54e0 Sha1: 9a3ca698ca1aeae695923277ed2244465e01a1ea Sha256: 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 1988 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 FQDN: ec.editmysite.com IP: 44.232.247.128 HASH: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df 44.232.247.128 HTTP/2 200 OK content-type: text/plain; charset=UTF-8 date: Mon, 28 Nov 2022 07:06:13 GMT content-length: 2 server: nginx set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 28 Nov 2023 07:06:13 GMT; Domain=; Path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://att-102966.square.site access-control-allow-credentials: true X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 444bcb3a3fcf8389296c49467f27e1d6 Sha1: 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /uploads/b/20d90140-6d5c-11ed-8d23-cffedacf2c7a/icon_180x180_ios_MjMwOD.png?width=180 HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619172.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/uploads/b/20d90140-6d5c-11ed-8d2 (...) FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 6039263a4b8758acb7d1d0a1bf51681b4df3c1cc2eba930b053d1dfb91042f91 199.34.228.40 HTTP/1.1 200 OK Content-Type: image/webp Server: nginx Date: Mon, 28 Nov 2022 07:06:13 GMT Content-Length: 634 Connection: keep-alive Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * Etag: "SBpKT7stsP/00mUkExaTrnA2+XiG0f/4X3ok1jRDgD0" Fastly-Io-Info: ifsz=1229 idim=180x180 ifmt=png ofsz=634 odim=180x180 ofmt=webp Fastly-Stats: io=1 Fastly-Transform-Stats: tus=2294 cr=1.94 X-Amz-Request-Id: tx00000000000003af150d7-006382aee1-c669cc6-sfo1 X-Rgw-Object-Type: Normal X-Storage-Bucket: z50e8 X-Storage-Object: 50e828e3e785f2da8879a7a856686eee37f0a7a48c1606b37aa1564fdd40b0ac Via: 1.1 varnish, 1.1 varnish Accept-Ranges: bytes Age: 2324 X-Served-By: cache-sjc10024-SJC, cache-pao17440-PAO X-Cache: MISS, HIT X-Cache-Hits: 0, 1 X-Timer: S1669619174.632261,VS0,VE1 Vary: Accept Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 X-Host: blu41.sf2p.intern.weebly.net --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image\012- data Size: 634 Md5: 9a8df7976baec75cd31177fcb4cf3a7a Sha1: e738c4019ff98766a66dc651d411552bea19d270 Sha256: 6039263a4b8758acb7d1d0a1bf51681b4df3c1cc2eba930b053d1dfb91042f91 Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=utf-8 X-XSRF-TOKEN: eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9 Content-Length: 83 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619172.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/ajax/api/JsonRPC/Commerce/?Comme (...) FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160 199.34.228.40 HTTP/1.1 200 OK Content-Type: application/json Date: Mon, 28 Nov 2022 07:06:13 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: blu134.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 201 Keep-Alive: timeout=10, max=75 Connection: Keep-Alive --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 201 Md5: bbf985fd86ef8add09a38860a98def2f Sha1: 2804fa968da1e1b8be4b6f150438e45f4150d3c0 Sha256: 236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160 Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
GET /app/website/cms/api/v1/users/143987215/customers/coordinates HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-XSRF-TOKEN: eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9 Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619172.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/app/website/cms/api/v1/users/143 (...) FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 1d97b677c782c9ae57c8b4dcb6afd88a8068ea3cd133a00cf1050dfe0b4d835c 199.34.228.40 HTTP/1.1 200 OK Content-Type: application/json Server: nginx Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Cache-Control: no-cache, private Date: Mon, 28 Nov 2022 07:06:13 GMT Set-Cookie: websitespring-xsrf=eyJpdiI6InRiZ3h1ME85anM3Mlk5bWZCVk5zWUE9PSIsInZhbHVlIjoiSUVpWU9RdlY1ak05N3dwMldocWEreXd5QUdvK3VpZzUwZ2pQdlc0S0RtdUVPZElGMXNjS1lNbFhGekJ5YVdldUxCSWRDV2d5ZFhrQVFCbjFNSExrS0l4dnprMmpyVHpEQUxSVFZZbEJhTWh5ZGtQaUQ1NHVHVzdUV1RcL1E0NjdlIiwibWFjIjoiMjNlMGE1MmRiM2JiNzc2MzY1NzkyMDk2NTA2YTEwZDdlNTkxZmU3ZTA3YzQ2Y2M3OGU4N2RkNGM0N2NmN2ExMSJ9; expires=Mon, 12-Dec-2022 07:06:13 GMT; Max-Age=1209600; path=/ XSRF-TOKEN=eyJpdiI6IjMrdE9ZMG51VFZqK3JUWlFQb2dOXC9BPT0iLCJ2YWx1ZSI6Ik5BMndlUzNoenNlSDJ1Q01ueDFDU2wraDJabzc4WEtScFdBc3NcL2V2a25GdjRWYmhpdEJFa29jZDJQdkorSGgxZ2xvT2VVam02ejQrXC9aMHNJTTIwdGh6QllWZ2xieDJRN3Z4MkxyRUZSZXV2ZkM4blFIMDIwQ1wvVEN1eUJ2cjIwIiwibWFjIjoiZWQ0NTJhN2RkYjA1YTQyNTg2YTQyNmRjNWM5ZjgwN2I2M2U0Zjc1NTI4OWQ0OWM0ZTYxM2M1M2QzMGQ0M2EwZiJ9; expires=Mon, 12-Dec-2022 07:06:13 GMT; Max-Age=1209600; path=/ X-Host: blu80.sf2p.intern.weebly.net X-Revision: 8b6d9d887a47f8cceadf99cb849a3347de2cf18d X-Request-ID: 67607e409136db8affdcbaad3d0c2d3d Content-Encoding: gzip --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 70 Md5: 9752b06c768724a72741cf9388713596 Sha1: 3c05993fc47e53d1edaa9c03779565a7753f3a61 Sha256: 1d97b677c782c9ae57c8b4dcb6afd88a8068ea3cd133a00cf1050dfe0b4d835c Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
GET /app/store/api/v23/editor/users/143987215/sites/876910929579567510/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1 Host: cdn5.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: cdn5.editmysite.com/app/store/api/v23/editor/users/1439 (...) FQDN: cdn5.editmysite.com IP: 151.101.85.46 HASH: faaee9070fc08b0f69d9010ecd0f3b0d6b2e3ed1789f0e111f78d380648cc8eb 151.101.85.46 HTTP/2 200 OK content-type: application/json server: nginx cache-control: s-maxage=604800 etag: W/"c086001a873da92f669f1a4fe90018be" access-control-allow-methods: GET, HEAD fullcache: h x-revision: 59efa7159af62d9328c20c27809cce30d40cdace x-request-id: b12b6922ee7b6eecb5b48c72085d3619 content-encoding: gzip x-w-dc: SFO accept-ranges: bytes date: Mon, 28 Nov 2022 07:06:13 GMT via: 1.1 varnish age: 0 x-served-by: cache-bma1632-BMA x-cache: MISS x-cache-hits: 0 x-timer: S1669619174.799178,VS0,VE185 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 1338 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (3725), with no line terminators Size: 1338 Md5: fcce7bd23254bd2caa56917e772370a0 Sha1: feab74e7c0377c6728fd91836b1d8a39ad657d95 Sha256: faaee9070fc08b0f69d9010ecd0f3b0d6b2e3ed1789f0e111f78d380648cc8eb
GET /square.ico HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6InhRSUxMdGl0YmRHeXAwTHVBbVRzZVE9PSIsInZhbHVlIjoiTUY2eFlTa0hJZ2Q5NnFiXC9mNHF0cWZKbXpsZkNBWTBUcnBVelNhYmpsWlJkNmQ1dStuY0tHZkVlbmRqTzZ4QVRBRXMydjVkQ1BVNXMwNDJQS2RsWVVFQUk4N1pHTWhRV3ZpRHMyQWdKRnl0Qzl5bWpkQVZZajRCdGJCcndpb0thIiwibWFjIjoiNGE0ZWI3NGJjYmE0ZDJkYTg3Y2NkMmE2N2FlYjFiNDMyMWMwYjcyMDE1NDUyNmEzNTRkM2EyMzkxYTcyYmY2MCJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619172.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/square.ico FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6 199.34.228.40 HTTP/1.1 200 OK Content-Type: image/x-icon Server: nginx Date: Mon, 28 Nov 2022 07:06:14 GMT Content-Length: 6518 Connection: keep-alive Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT x-rgw-object-type: Normal ETag: "d810985ef4dc1c0bd5811e36d13c8ca3" x-amz-request-id: tx000000000000001ac6ae5-00628473fa-b9fbc64-sfo1 Accept-Ranges: bytes Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 X-Host: grn69.sf2p.intern.weebly.net X-Revision: 8b6d9d887a47f8cceadf99cb849a3347de2cf18d X-Request-ID: 68634b8db722988323a726610a6c142c --- Additional Info --- Magic: MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size: 6518 Md5: d810985ef4dc1c0bd5811e36d13c8ca3 Sha1: 2b45bb77c68c937af6a2d9854dc82301526473aa Sha256: 770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6 Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 2428 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 FQDN: ec.editmysite.com IP: 44.232.247.128 HASH: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df 44.232.247.128 HTTP/2 200 OK content-type: text/plain; charset=UTF-8 date: Mon, 28 Nov 2022 07:06:14 GMT content-length: 2 server: nginx set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 28 Nov 2023 07:06:14 GMT; Domain=; Path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://att-102966.square.site access-control-allow-credentials: true X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 444bcb3a3fcf8389296c49467f27e1d6 Sha1: 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 7767d070134ab22f0e5705d5c2505059e471df9f667568d7f885ac25f4eb3046 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4497 Cache-Control: max-age=92730 Date: Mon, 28 Nov 2022 07:06:14 GMT Etag: "6383138f-1d7" Expires: Tue, 29 Nov 2022 08:51:44 GMT Last-Modified: Sun, 27 Nov 2022 07:36:47 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: fc68a5cd86f3e5ba2e6490a6b8f01582 Sha1: 9241584d6d287b2d8a66b6aaa77a1993a6919bba Sha256: 7767d070134ab22f0e5705d5c2505059e471df9f667568d7f885ac25f4eb3046
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 1886 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 FQDN: ec.editmysite.com IP: 44.232.247.128 HASH: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df 44.232.247.128 HTTP/2 200 OK content-type: text/plain; charset=UTF-8 date: Mon, 28 Nov 2022 07:06:14 GMT content-length: 2 server: nginx set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 28 Nov 2023 07:06:14 GMT; Domain=; Path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://att-102966.square.site access-control-allow-credentials: true X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 444bcb3a3fcf8389296c49467f27e1d6 Sha1: 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=utf-8 Client-Application-Name: website X-XSRF-TOKEN: eyJpdiI6IjMrdE9ZMG51VFZqK3JUWlFQb2dOXC9BPT0iLCJ2YWx1ZSI6Ik5BMndlUzNoenNlSDJ1Q01ueDFDU2wraDJabzc4WEtScFdBc3NcL2V2a25GdjRWYmhpdEJFa29jZDJQdkorSGgxZ2xvT2VVam02ejQrXC9aMHNJTTIwdGh6QllWZ2xieDJRN3Z4MkxyRUZSZXV2ZkM4blFIMDIwQ1wvVEN1eUJ2cjIwIiwibWFjIjoiZWQ0NTJhN2RkYjA1YTQyNTg2YTQyNmRjNWM5ZjgwN2I2M2U0Zjc1NTI4OWQ0OWM0ZTYxM2M1M2QzMGQ0M2EwZiJ9 Content-Length: 77 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6IjMrdE9ZMG51VFZqK3JUWlFQb2dOXC9BPT0iLCJ2YWx1ZSI6Ik5BMndlUzNoenNlSDJ1Q01ueDFDU2wraDJabzc4WEtScFdBc3NcL2V2a25GdjRWYmhpdEJFa29jZDJQdkorSGgxZ2xvT2VVam02ejQrXC9aMHNJTTIwdGh6QllWZ2xieDJRN3Z4MkxyRUZSZXV2ZkM4blFIMDIwQ1wvVEN1eUJ2cjIwIiwibWFjIjoiZWQ0NTJhN2RkYjA1YTQyNTg2YTQyNmRjNWM5ZjgwN2I2M2U0Zjc1NTI4OWQ0OWM0ZTYxM2M1M2QzMGQ0M2EwZiJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619174.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331; websitespring-xsrf=eyJpdiI6InRiZ3h1ME85anM3Mlk5bWZCVk5zWUE9PSIsInZhbHVlIjoiSUVpWU9RdlY1ak05N3dwMldocWEreXd5QUdvK3VpZzUwZ2pQdlc0S0RtdUVPZElGMXNjS1lNbFhGekJ5YVdldUxCSWRDV2d5ZFhrQVFCbjFNSExrS0l4dnprMmpyVHpEQUxSVFZZbEJhTWh5ZGtQaUQ1NHVHVzdUV1RcL1E0NjdlIiwibWFjIjoiMjNlMGE1MmRiM2JiNzc2MzY1NzkyMDk2NTA2YTEwZDdlNTkxZmU3ZTA3YzQ2Y2M3OGU4N2RkNGM0N2NmN2ExMSJ9 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/ajax/api/JsonRPC/Commerce/?Comme (...) FQDN: att-102966.square.site IP: 199.34.228.40 HASH: c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049 199.34.228.40 HTTP/1.1 200 OK Content-Type: application/json Date: Mon, 28 Nov 2022 07:06:14 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: grn70.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 79 Keep-Alive: timeout=10, max=75 Connection: Keep-Alive --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 79 Md5: 26e70d9925604cbe0c7e866fc54d87f4 Sha1: ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259 Sha256: c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049 Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=utf-8 Client-Application-Name: website X-XSRF-TOKEN: eyJpdiI6IjMrdE9ZMG51VFZqK3JUWlFQb2dOXC9BPT0iLCJ2YWx1ZSI6Ik5BMndlUzNoenNlSDJ1Q01ueDFDU2wraDJabzc4WEtScFdBc3NcL2V2a25GdjRWYmhpdEJFa29jZDJQdkorSGgxZ2xvT2VVam02ejQrXC9aMHNJTTIwdGh6QllWZ2xieDJRN3Z4MkxyRUZSZXV2ZkM4blFIMDIwQ1wvVEN1eUJ2cjIwIiwibWFjIjoiZWQ0NTJhN2RkYjA1YTQyNTg2YTQyNmRjNWM5ZjgwN2I2M2U0Zjc1NTI4OWQ0OWM0ZTYxM2M1M2QzMGQ0M2EwZiJ9 Content-Length: 89 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6IjMrdE9ZMG51VFZqK3JUWlFQb2dOXC9BPT0iLCJ2YWx1ZSI6Ik5BMndlUzNoenNlSDJ1Q01ueDFDU2wraDJabzc4WEtScFdBc3NcL2V2a25GdjRWYmhpdEJFa29jZDJQdkorSGgxZ2xvT2VVam02ejQrXC9aMHNJTTIwdGh6QllWZ2xieDJRN3Z4MkxyRUZSZXV2ZkM4blFIMDIwQ1wvVEN1eUJ2cjIwIiwibWFjIjoiZWQ0NTJhN2RkYjA1YTQyNTg2YTQyNmRjNWM5ZjgwN2I2M2U0Zjc1NTI4OWQ0OWM0ZTYxM2M1M2QzMGQ0M2EwZiJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619174.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331; websitespring-xsrf=eyJpdiI6InRiZ3h1ME85anM3Mlk5bWZCVk5zWUE9PSIsInZhbHVlIjoiSUVpWU9RdlY1ak05N3dwMldocWEreXd5QUdvK3VpZzUwZ2pQdlc0S0RtdUVPZElGMXNjS1lNbFhGekJ5YVdldUxCSWRDV2d5ZFhrQVFCbjFNSExrS0l4dnprMmpyVHpEQUxSVFZZbEJhTWh5ZGtQaUQ1NHVHVzdUV1RcL1E0NjdlIiwibWFjIjoiMjNlMGE1MmRiM2JiNzc2MzY1NzkyMDk2NTA2YTEwZDdlNTkxZmU3ZTA3YzQ2Y2M3OGU4N2RkNGM0N2NmN2ExMSJ9 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/ajax/api/JsonRPC/Commerce/?Comme (...) FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef 199.34.228.40 HTTP/1.1 200 OK Content-Type: application/json Date: Mon, 28 Nov 2022 07:06:14 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: grn89.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 182 Keep-Alive: timeout=10, max=75 Connection: Keep-Alive --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 182 Md5: 6f6b6b81dd3714cd388808342e960a10 Sha1: f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61 Sha256: 2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
GET /uploads/b/488d198f1bb75516603317e483d6850a504bfbfec1adc8a18f3eae29ec6de2c8/cool_1669447875.png?width=400 HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6IjMrdE9ZMG51VFZqK3JUWlFQb2dOXC9BPT0iLCJ2YWx1ZSI6Ik5BMndlUzNoenNlSDJ1Q01ueDFDU2wraDJabzc4WEtScFdBc3NcL2V2a25GdjRWYmhpdEJFa29jZDJQdkorSGgxZ2xvT2VVam02ejQrXC9aMHNJTTIwdGh6QllWZ2xieDJRN3Z4MkxyRUZSZXV2ZkM4blFIMDIwQ1wvVEN1eUJ2cjIwIiwibWFjIjoiZWQ0NTJhN2RkYjA1YTQyNTg2YTQyNmRjNWM5ZjgwN2I2M2U0Zjc1NTI4OWQ0OWM0ZTYxM2M1M2QzMGQ0M2EwZiJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619174.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331; websitespring-xsrf=eyJpdiI6InRiZ3h1ME85anM3Mlk5bWZCVk5zWUE9PSIsInZhbHVlIjoiSUVpWU9RdlY1ak05N3dwMldocWEreXd5QUdvK3VpZzUwZ2pQdlc0S0RtdUVPZElGMXNjS1lNbFhGekJ5YVdldUxCSWRDV2d5ZFhrQVFCbjFNSExrS0l4dnprMmpyVHpEQUxSVFZZbEJhTWh5ZGtQaUQ1NHVHVzdUV1RcL1E0NjdlIiwibWFjIjoiMjNlMGE1MmRiM2JiNzc2MzY1NzkyMDk2NTA2YTEwZDdlNTkxZmU3ZTA3YzQ2Y2M3OGU4N2RkNGM0N2NmN2ExMSJ9 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/uploads/b/488d198f1bb75516603317 (...) FQDN: att-102966.square.site IP: 199.34.228.40 HASH: e802bd038e4e3a29049d3914dc5e9d60db6f6fd548dbdf6b1491113573101054 199.34.228.40 HTTP/1.1 200 OK Content-Type: image/webp Server: nginx Date: Mon, 28 Nov 2022 07:06:14 GMT Content-Length: 2030 Connection: keep-alive Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * Etag: "oAczRdelL3XbY4wtGILxq2824J72e1bxnYK4SA/IGUU" Fastly-Io-Info: ifsz=2549 idim=73x30 ifmt=png ofsz=2030 odim=73x30 ofmt=webp Fastly-Stats: io=1 Fastly-Transform-Stats: tus=7814 cr=1.26 X-Amz-Request-Id: tx0000000000000325a7585-0063750ed3-c6aed46-sfo1 X-Rgw-Object-Type: Normal X-Storage-Bucket: zffab X-Storage-Object: ffabb532fc3612ae5f3d7898774643b5a103cd590ab04c2202837eb8849a5128 Via: 1.1 varnish, 1.1 varnish Accept-Ranges: bytes Age: 0 X-Served-By: cache-sjc10044-SJC, cache-pao17450-PAO X-Cache: MISS, HIT X-Cache-Hits: 0, 1 X-Timer: S1669619175.538583,VS0,VE24 Vary: Accept Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 X-Host: grn44.sf2p.intern.weebly.net --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image\012- data Size: 2030 Md5: b9c9732f75e2228b7ec0421558d1bd2a Sha1: 4a507a595389780562dac9df431c5ef0da95eab0 Sha256: e802bd038e4e3a29049d3914dc5e9d60db6f6fd548dbdf6b1491113573101054 Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8b6d9d8&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=d3b038c2-76b2-4274-a649-eceb2be5335f&batch_time=1669619173653 HTTP/1.1 Host: rum.browser-intake-datadoghq.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 16287 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=br (...) FQDN: rum.browser-intake-datadoghq.com IP: 3.233.155.163 HASH: d7f1f9e046ec8581aee5b2b24caabd24379333afb073647097c4c57dbec17bdb 3.233.155.163 HTTP/2 202 Accepted content-type: application/json date: Mon, 28 Nov 2022 07:06:14 GMT content-length: 53 cross-origin-resource-policy: cross-origin access-control-allow-origin: * x-content-type-options: nosniff strict-transport-security: max-age=15724800; X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 53 Md5: 301d6645e795e462a142c2321c8083ef Sha1: b6829a782793bd87d74a187753c014247911f84f Sha256: d7f1f9e046ec8581aee5b2b24caabd24379333afb073647097c4c57dbec17bdb
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8b6d9d8&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=4599eb94-2a11-4277-8545-62f4464d482f&batch_time=1669619173788 HTTP/1.1 Host: rum.browser-intake-datadoghq.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 16360 Origin: https://att-102966.square.site Connection: keep-alive Referer: https://att-102966.square.site/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=br (...) FQDN: rum.browser-intake-datadoghq.com IP: 3.233.155.163 HASH: 3a818e6bf1b3ee23622d659797a9bbea88a2c735f354e7db2c17af96a2b2694d 3.233.155.163 HTTP/2 202 Accepted content-type: application/json date: Mon, 28 Nov 2022 07:06:14 GMT content-length: 53 cross-origin-resource-policy: cross-origin access-control-allow-origin: * x-content-type-options: nosniff strict-transport-security: max-age=15724800; X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 53 Md5: e05454ded1b816bb147723ea373be0ad Sha1: cea9709dafdee84ad8507cca8dfa5fcf1366c6db Sha256: 3a818e6bf1b3ee23622d659797a9bbea88a2c735f354e7db2c17af96a2b2694d
GET /app/website/square.ico HTTP/1.1 Host: att-102966.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-102966.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IkNIWnd2K2lyRlI4dHlQSjM0MkxmbGc9PSIsInZhbHVlIjoicGNIWkE1d21DVVhLWmphRG1ieStMcFJ6ME5rZUVvMEJoakxNb3JJQ1lzcFhqbHUrRHlTSUo3TVNsQlZia21ScWl3ZkNZSWs4UlNQWVZmRDRaNmpEMkRpYVlnRWJHQit2cWtaTXBvRGRHanFXUkZ6MzFSMGZudis5RXRZckgrWEgiLCJtYWMiOiJkM2E5ZTM1YzNjZGFjNGM2MGQ1NTM0MTVlM2YzY2I3ZjlkODM1NjM2MDMwY2I4NzEwMmU3MThmZDNjODJmMGNlIn0%3D; XSRF-TOKEN=eyJpdiI6IjMrdE9ZMG51VFZqK3JUWlFQb2dOXC9BPT0iLCJ2YWx1ZSI6Ik5BMndlUzNoenNlSDJ1Q01ueDFDU2wraDJabzc4WEtScFdBc3NcL2V2a25GdjRWYmhpdEJFa29jZDJQdkorSGgxZ2xvT2VVam02ejQrXC9aMHNJTTIwdGh6QllWZ2xieDJRN3Z4MkxyRUZSZXV2ZkM4blFIMDIwQ1wvVEN1eUJ2cjIwIiwibWFjIjoiZWQ0NTJhN2RkYjA1YTQyNTg2YTQyNmRjNWM5ZjgwN2I2M2U0Zjc1NTI4OWQ0OWM0ZTYxM2M1M2QzMGQ0M2EwZiJ9; PublishedSiteSession=eyJpdiI6IlZXc3JUdXdqVWRKcVwvUDB4RHRlbGVRPT0iLCJ2YWx1ZSI6IitiTU4zNFFKSUN4blVyU3BnZmcyeFd5d2NBdkptTTZsaXNXTXdJeTJ2aUdyYVR2cUJRNDNCd2pneWJjR3VkVFZkeGtCbFU0bno3amhZdzREMU5lb1RWNlI0UEFQdW5UK0luY0ZEcjZselk0dzVjajBNenlvWldWRG5ZME1STmZtIiwibWFjIjoiNjYyZDNmNzEwODY5ODA0ZTk5YmY1N2E0YmQzMTEyMDljOGU5ZDI0NWRlN2RmZjg0MWQwOWZkOWMwM2M1ZmVhMiJ9; _snow_ses.0f38=*; _snow_id.0f38=fb54b6d9-2a4e-4ac1-95e6-525842ac8283.1669619172.1.1669619174.1669619172.9adbf1c2-4791-45ba-b532-3c9be5110bd1; _dd_s=rum=1&id=8ef4a0cd-33b9-499a-bdda-3dea95b443a0&created=1669619172331&expire=1669620072331; websitespring-xsrf=eyJpdiI6InRiZ3h1ME85anM3Mlk5bWZCVk5zWUE9PSIsInZhbHVlIjoiSUVpWU9RdlY1ak05N3dwMldocWEreXd5QUdvK3VpZzUwZ2pQdlc0S0RtdUVPZElGMXNjS1lNbFhGekJ5YVdldUxCSWRDV2d5ZFhrQVFCbjFNSExrS0l4dnprMmpyVHpEQUxSVFZZbEJhTWh5ZGtQaUQ1NHVHVzdUV1RcL1E0NjdlIiwibWFjIjoiMjNlMGE1MmRiM2JiNzc2MzY1NzkyMDk2NTA2YTEwZDdlNTkxZmU3ZTA3YzQ2Y2M3OGU4N2RkNGM0N2NmN2ExMSJ9 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: att-102966.square.site/app/website/square.ico FQDN: att-102966.square.site IP: 199.34.228.40 HASH: 770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6 199.34.228.40 HTTP/1.1 200 OK Content-Type: image/x-icon Server: nginx Date: Mon, 28 Nov 2022 07:06:14 GMT Content-Length: 6518 Connection: keep-alive Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT x-rgw-object-type: Normal ETag: "d810985ef4dc1c0bd5811e36d13c8ca3" x-amz-request-id: tx000000000000001ac6ae5-00628473fa-b9fbc64-sfo1 Accept-Ranges: bytes Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 X-Host: blu47.sf2p.intern.weebly.net X-Revision: 8b6d9d887a47f8cceadf99cb849a3347de2cf18d X-Request-ID: ab5cd5bac86fae1207ba3e6494114125 --- Additional Info --- Magic: MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size: 6518 Md5: d810985ef4dc1c0bd5811e36d13c8ca3 Sha1: 2b45bb77c68c937af6a2d9854dc82301526473aa Sha256: 770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6 Alerts: Blocklists: - openphish: AT&T Inc. - fortinet: Phishing

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=4064 

                                        
                                            
Expires: Mon, 28 Nov 2022 08:13:55 GMT 

                                        
                                            
Date: Mon, 28 Nov 2022 07:06:11 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    cdbad2434b7d127a4fc769807a9dc3e7

                                                Sha1:   fa98cd9fc2309ab4423f33f683d17bdb17d76713

                                                Sha256: 560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Mon, 28 Nov 2022 06:19:32 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 2799 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    d130218d0e2841f39c99610fe1a2ab90

                                                Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945

                                                Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream

                                        

                                        
                                            
x-amz-id-2: nHHrOoAdX0lrENtxAaaC5MpM2n9xb7chIJk6gOqFLmXVjbgf3YOSWaAJqqikP2nYWOqNhMrC07Poy/FL4V3vXQ== 

                                        
                                            
x-amz-request-id: D4M0954AKWRBDAJ6 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Mon, 28 Nov 2022 06:41:57 GMT 

                                        
                                            
age: 1454 

                                        
                                            
last-modified: Thu, 10 Nov 2022 09:21:27 GMT 

                                        
                                            
etag: "9ebddc2b260d081ebbefee47c037cb28" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    9ebddc2b260d081ebbefee47c037cb28

                                                Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39

                                                Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Mon, 28 Nov 2022 07:06:11 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.entrust.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         104.110.10.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
ETag: "6A2EB36F91265B9950C8B51071BD56466F724C99898B05B7E8F041ACD1459085" 

                                        
                                            
Last-Modified: Sun, 27 Nov 2022 22:00:00 UTC 

                                        
                                            
Content-Length: 1588 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3551 

                                        
                                            
Expires: Mon, 28 Nov 2022 08:05:22 GMT 

                                        
                                            
Date: Mon, 28 Nov 2022 07:06:11 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   1588

                                                Md5:    19f51efb854ccfbb0d420828e57ad7dd

                                                Sha1:   4b94719f49e2222518cd03df034b13b49f7441b3

                                                Sha256: 6a2eb36f91265b9950c8b51071bd56466f724c99898b05b7e8f041acd1459085

                                        
                                            GET /app/website/css/site.1212ec71ad4b7ff5f443.css HTTP/1.1 

                                        
                                            
Host: cdn3.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         151.101.85.46

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
server: nginx 

                                        
                                            
last-modified: Wed, 09 Nov 2022 21:23:11 GMT 

                                        
                                            
x-rgw-object-type: Normal 

                                        
                                            
etag: W/"c22f38a806467cd0cdff32ec647019f0" 

                                        
                                            
x-amz-request-id: tx00000000000002d07c203-00636c1aa2-c67eadd-sfo1 

                                        
                                            
expires: Thu, 31 Dec 2037 23:55:55 GMT 

                                        
                                            
cache-control: max-age=315360000 

                                        
                                            
x-revision: 64414abb58e4acfdd0b6e55daa9d9489195edb4b 

                                        
                                            
x-request-id: 463ecf92fd5e50a7617749451e59789e 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-w-dc: SFO 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Mon, 28 Nov 2022 07:06:12 GMT 

                                        
                                            
via: 1.1 varnish 

                                        
                                            
age: 1153330 

                                        
                                            
x-served-by: cache-bma1646-BMA 

                                        
                                            
x-cache: HIT 

                                        
                                            
x-cache-hits: 1 

                                        
                                            
x-timer: S1669619172.254933,VS0,VE1 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 

                                        
                                            
content-length: 23817 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with very long lines (64930), with no line terminators

                                                Size:   23817

                                                Md5:    95f18bd4635781a99daed1dd3de8adc1

                                                Sha1:   ac08c18cc726deed47eb6b8f68ec3b5239a2fd91

                                                Sha256: ef25fa02ff6fba3fa3c90616e1ddbea7d9695867b40a81889074051552b7fff5

                                        
                                            GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1 

                                        
                                            
Host: cdn3.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         151.101.85.46

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=utf-8

                                        

                                        
                                            
server: nginx 

                                        
                                            
last-modified: Tue, 29 Mar 2022 18:09:33 GMT 

                                        
                                            
x-rgw-object-type: Normal 

                                        
                                            
etag: W/"40372ca3b0cfa19f4e5d664243108364" 

                                        
                                            
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1 

                                        
                                            
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map 

                                        
                                            
expires: Thu, 31 Dec 2037 23:55:55 GMT 

                                        
                                            
cache-control: max-age=315360000 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-w-dc: SFO 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Mon, 28 Nov 2022 07:06:12 GMT 

                                        
                                            
via: 1.1 varnish 

                                        
                                            
age: 1143911 

                                        
                                            
x-served-by: cache-bma1646-BMA 

                                        
                                            
x-cache: HIT 

                                        
                                            
x-cache-hits: 3 

                                        
                                            
x-timer: S1669619172.256321,VS0,VE0 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 

                                        
                                            
content-length: 4998 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (11882), with no line terminators

                                                Size:   4998

                                                Md5:    20a4e66f534b80396d40bbc4291b2172

                                                Sha1:   d7c962996f2715d94483be2bf9b644c7185d7ec7

                                                Sha256: 0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac

                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 

                                        
                                            
Host: cdn2.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         151.101.85.46

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
server: nginx 

                                        
                                            
last-modified: Wed, 23 Nov 2022 18:03:15 GMT 

                                        
                                            
etag: "637e6063-124fe" 

                                        
                                            
expires: Thu, 08 Dec 2022 08:38:41 GMT 

                                        
                                            
cache-control: max-age=1209600 

                                        
                                            
x-host: grn145.sf2p.intern.weebly.net 

                                        
                                            
content-encoding: gzip 

                                        
                                            
via: 1.1 varnish, 1.1 varnish 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Mon, 28 Nov 2022 07:06:12 GMT 

                                        
                                            
age: 340050 

                                        
                                            
x-served-by: cache-sjc10061-SJC, cache-bma1646-BMA 

                                        
                                            
x-cache: HIT, HIT 

                                        
                                            
x-cache-hits: 36, 3219 

                                        
                                            
x-timer: S1669619172.265241,VS0,VE0 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 

                                        
                                            
content-length: 25752 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (2512)

                                                Size:   25752

                                                Md5:    234327230add9a5a5d61a48829ea4565

                                                Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129

                                                Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75

                                        
                                            GET /app/website/js/languages/en.d69f032602a9a8656bf8.js HTTP/1.1 

                                        
                                            
Host: cdn3.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         151.101.85.46

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=utf-8

                                        

                                        
                                            
server: nginx 

                                        
                                            
last-modified: Thu, 03 Nov 2022 23:25:35 GMT 

                                        
                                            
x-rgw-object-type: Normal 

                                        
                                            
etag: W/"88da55c6ac5b86a27462f8794b300ba2" 

                                        
                                            
x-amz-request-id: tx0000000000000278488a3-0063644e55-c6aed46-sfo1 

                                        
                                            
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.d69f032602a9a8656bf8.js.map 

                                        
                                            
expires: Thu, 31 Dec 2037 23:55:55 GMT 

                                        
                                            
cache-control: max-age=315360000 

                                        
                                            
x-revision: 5b106465564fd8cfdc25e96fbccd2ff9dcb7a0ec 

                                        
                                            
x-request-id: d06a245b8fc77a19a7522567339564c9 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-w-dc: SFO 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Mon, 28 Nov 2022 07:06:12 GMT 

                                        
                                            
via: 1.1 varnish 

                                        
                                            
age: 2100920 

                                        
                                            
x-served-by: cache-bma1646-BMA 

                                        
                                            
x-cache: HIT 

                                        
                                            
x-cache-hits: 1 

                                        
                                            
x-timer: S1669619172.258113,VS0,VE1 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 

                                        
                                            
content-length: 151425 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (65536), with no line terminators

                                                Size:   151425

                                                Md5:    614f055b0efefbf483b909e5dd20bd4b

                                                Sha1:   2721e7fe99f743ec65a6782d0778e3a23cb17b5c

                                                Sha256: f602fdff3225656b0f2b2c829c952f284590b4fa25de447146a9208335a849ea

                                        
                                            GET /app/checkout/assets/checkout/locale-imports-map.be14e50d1628faa410488f65362a397d.json HTTP/1.1 

                                        
                                            
Host: cdn3.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Origin: https://att-102966.square.site 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         151.101.85.46

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
last-modified: Mon, 07 Nov 2022 22:17:43 GMT 

                                        
                                            
etag: W/"63698407-64b" 

                                        
                                            
expires: Thu, 31 Dec 2037 23:55:55 GMT 

                                        
                                            
cache-control: max-age=315360000 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-w-dc: SFO 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Mon, 28 Nov 2022 07:06:12 GMT 

                                        
                                            
via: 1.1 varnish 

                                        
                                            
age: 1753739 

                                        
                                            
x-served-by: cache-bma1646-BMA 

                                        
                                            
x-cache: HIT 

                                        
                                            
x-cache-hits: 4 

                                        
                                            
x-timer: S1669619172.349753,VS0,VE0 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 

                                        
                                            
content-length: 325 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (1611), with no line terminators

                                                Size:   325

                                                Md5:    be5c6eec9cf3e92f8df759e392e01209

                                                Sha1:   e0bff726136f738e6a1fe3e991d9a64dcf46d23a

                                                Sha256: e630015425b5298e0f7db7e397850913ea94d317beba50978a9df8e8364334ae

                                        
                                            POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1 

                                        
                                            
Host: ocsp.globalsign.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         104.18.21.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Mon, 28 Nov 2022 07:06:12 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Etag: "549B86D14FC88AC4E93798E6125DB3BB512AAC34" 

                                        
                                            
Expires: Mon, 28 Nov 2022 17:00:00 GMT 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 05:00:00 UTC 

                                        
                                            
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate 

                                        
                                            
CF-Cache-Status: HIT 

                                        
                                            
Age: 3273 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7711427338ebb511-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   1462

                                                Md5:    a420efacd6085bbbb9b15ea506098bb4

                                                Sha1:   6253f4ab1146f992725eda48ecd4f416824c1e55

                                                Sha256: a997bbb45cef3a4410e00cc6bbcc918cece672c9c478e21d37c7d822c79db378

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         143.204.42.158

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=127378 

                                        
                                            
Date: Mon, 28 Nov 2022 07:06:12 GMT 

                                        
                                            
Etag: "6383a1a3-1d7" 

                                        
                                            
Expires: Tue, 29 Nov 2022 18:29:10 GMT 

                                        
                                            
Last-Modified: Sun, 27 Nov 2022 17:42:59 GMT 

                                        
                                            
Server: ECS (bsa/EB21) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: -jt__OYLDIWLL4OWVaMDD0UXZHF80ehWvYG49MxEITDsViaMCDsvfw== 

                                        
                                            
Age: 2771 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    43f411ea449c964cff67f17987f882b4

                                                Sha1:   5eb4efaf34efc9b68f4ae4ebc8f51d9073f944cf

                                                Sha256: f0bda1b41e9f570bacdd6a9e7aa4dabe70f7a62697fe3469bb9958a84ec71571

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3620 

                                        
                                            
Expires: Mon, 28 Nov 2022 08:06:33 GMT 

                                        
                                            
Date: Mon, 28 Nov 2022 07:06:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    aebda342a81ad83f60d2523f54ccda67

                                                Sha1:   e590d9326e4a283e0929a8ffccb13cc4308af0e6

                                                Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3620 

                                        
                                            
Expires: Mon, 28 Nov 2022 08:06:33 GMT 

                                        
                                            
Date: Mon, 28 Nov 2022 07:06:13 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    aebda342a81ad83f60d2523f54ccda67

                                                Sha1:   e590d9326e4a283e0929a8ffccb13cc4308af0e6

                                                Sha256: bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 9430 

                                        
                                            
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cR7wyGCIIAMFhgw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw== 

                                        
                                            
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 22:01:46 GMT 

                                        
                                            
age: 32667 

                                        
                                            
etag: "075531f525e625b117b2497f31139c9824d0e9c5" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9430

                                                Md5:    1f434933b5bd6377d299ada22d1ae7ef

                                                Sha1:   075531f525e625b117b2497f31139c9824d0e9c5

                                                Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 11165 

                                        
                                            
x-amzn-requestid: 9e35d865-adea-4d2a-b20f-beb014cdd42f 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cR6_JE2VIAMFYgQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6383d860-7cf4db38152cdfa1448cba3d;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT 

                                        
                                            
x-amz-cf-pop: SFO5-C3, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 4YRocKXYUOkfho0bEHNX0xMxhhKNH2Cm3XtQDtQK7x2dFOsipPjfCw== 

                                        
                                            
via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 22:26:45 GMT 

                                        
                                            
age: 31168 

                                        
                                            
etag: "65941dd34eb1063a3f7fe2b6790a11a484a06b9a" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   11165

                                                Md5:    a8935783026c10470f60033d3a860f7b

                                                Sha1:   65941dd34eb1063a3f7fe2b6790a11a484a06b9a

                                                Sha256: e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 4708 

                                        
                                            
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cR6_JFbXIAMFc_g= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 6FSZ3Zw-s95LlrU3skAr5_g6m36c9SQ9_6vA3HFbMKYTTFzJRBJ76w== 

                                        
                                            
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 27 Nov 2022 22:26:43 GMT 

                                        
                                            
age: 31170 

                                        
                                            
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4708

                                                Md5:    4060284252d32701c42e2df4a83970a0

                                                Sha1:   a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da

                                                Sha256: 53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e

                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 

                                        
                                            
Host: ec.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json; charset=UTF-8 

                                        
                                            
Content-Length: 1988 

                                        
                                            
Origin: https://att-102966.square.site 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         44.232.247.128

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/plain; charset=UTF-8

                                        

                                        
                                            
date: Mon, 28 Nov 2022 07:06:13 GMT 

                                        
                                            
content-length: 2 

                                        
                                            
server: nginx 

                                        
                                            
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 28 Nov 2023 07:06:13 GMT; Domain=; Path=/; Secure; SameSite=None 

                                        
                                            
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" 

                                        
                                            
access-control-allow-origin: https://att-102966.square.site 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   2

                                                Md5:    444bcb3a3fcf8389296c49467f27e1d6

                                                Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb

                                                Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

                                        
                                            GET /app/store/api/v23/editor/users/143987215/sites/876910929579567510/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1 

                                        
                                            
Host: cdn5.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json, text/plain, */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://att-102966.square.site 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         151.101.85.46

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
cache-control: s-maxage=604800 

                                        
                                            
etag: W/"c086001a873da92f669f1a4fe90018be" 

                                        
                                            
access-control-allow-methods: GET, HEAD 

                                        
                                            
fullcache: h 

                                        
                                            
x-revision: 59efa7159af62d9328c20c27809cce30d40cdace 

                                        
                                            
x-request-id: b12b6922ee7b6eecb5b48c72085d3619 

                                        
                                            
content-encoding: gzip 

                                        
                                            
x-w-dc: SFO 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
date: Mon, 28 Nov 2022 07:06:13 GMT 

                                        
                                            
via: 1.1 varnish 

                                        
                                            
age: 0 

                                        
                                            
x-served-by: cache-bma1632-BMA 

                                        
                                            
x-cache: MISS 

                                        
                                            
x-cache-hits: 0 

                                        
                                            
x-timer: S1669619174.799178,VS0,VE185 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 

                                        
                                            
content-length: 1338 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (3725), with no line terminators

                                                Size:   1338

                                                Md5:    fcce7bd23254bd2caa56917e772370a0

                                                Sha1:   feab74e7c0377c6728fd91836b1d8a39ad657d95

                                                Sha256: faaee9070fc08b0f69d9010ecd0f3b0d6b2e3ed1789f0e111f78d380648cc8eb

                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 

                                        
                                            
Host: ec.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json; charset=UTF-8 

                                        
                                            
Content-Length: 2428 

                                        
                                            
Origin: https://att-102966.square.site 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         44.232.247.128

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/plain; charset=UTF-8

                                        

                                        
                                            
date: Mon, 28 Nov 2022 07:06:14 GMT 

                                        
                                            
content-length: 2 

                                        
                                            
server: nginx 

                                        
                                            
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 28 Nov 2023 07:06:14 GMT; Domain=; Path=/; Secure; SameSite=None 

                                        
                                            
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" 

                                        
                                            
access-control-allow-origin: https://att-102966.square.site 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   2

                                                Md5:    444bcb3a3fcf8389296c49467f27e1d6

                                                Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb

                                                Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 

                                        
                                            
Host: ec.editmysite.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json; charset=UTF-8 

                                        
                                            
Content-Length: 1886 

                                        
                                            
Origin: https://att-102966.square.site 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         44.232.247.128

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/plain; charset=UTF-8

                                        

                                        
                                            
date: Mon, 28 Nov 2022 07:06:14 GMT 

                                        
                                            
content-length: 2 

                                        
                                            
server: nginx 

                                        
                                            
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 28 Nov 2023 07:06:14 GMT; Domain=; Path=/; Secure; SameSite=None 

                                        
                                            
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" 

                                        
                                            
access-control-allow-origin: https://att-102966.square.site 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   2

                                                Md5:    444bcb3a3fcf8389296c49467f27e1d6

                                                Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb

                                                Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

                                        
                                            POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-8b6d9d8&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=d3b038c2-76b2-4274-a649-eceb2be5335f&batch_time=1669619173653 HTTP/1.1 

                                        
                                            
Host: rum.browser-intake-datadoghq.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain;charset=UTF-8 

                                        
                                            
Content-Length: 16287 

                                        
                                            
Origin: https://att-102966.square.site 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://att-102966.square.site/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         3.233.155.163

                                        
                                            HTTP/2 202 Accepted 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
date: Mon, 28 Nov 2022 07:06:14 GMT 

                                        
                                            
content-length: 53 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
strict-transport-security: max-age=15724800; 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   53

                                                Md5:    301d6645e795e462a142c2321c8083ef

                                                Sha1:   b6829a782793bd87d74a187753c014247911f84f

                                                Sha256: d7f1f9e046ec8581aee5b2b24caabd24379333afb073647097c4c57dbec17bdb

URL	att-102966.square.site/
IP	199.34.228.40 (United States)
ASN	#27647 WEEBLY
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-28 07:06:22 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	22
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (18)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.40

Last 5 reports on ASN: WEEBLY

Last 5 reports on domain: square.site

Last 1 reports with similar screenshot

JavaScript

Executed Scripts (33)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (53)

Overview

Domain Summary (18)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.40

Last 5 reports on ASN: WEEBLY

Last 5 reports on domain: square.site

Last 1 reports with similar screenshot

JavaScript

Executed Scripts (33)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (53)

Network Intrusion Detection Systems