www.mysils.co.uk/
200 OK 345 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (492), with no line terminators
Hash 932e2be2ff0cb0d87741e77ef5a0d909
2a00d5604e5cc68b759acabdf9932b9aa0eb1d06
8a42e74ee053a3d1db9e1f533895f5f1fb568ef4eebdfc697fad0cc0872d7e15
GET / HTTP/1.1
Host: www.mysils.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: private
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
Date: Thu, 01 Dec 2022 14:29:32 GMT
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5979
Expires: Thu, 01 Dec 2022 16:09:12 GMT
Date: Thu, 01 Dec 2022 14:29:33 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4051
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:29:33 GMT
Etag: "63888270-1d7"
Last-Modified: Thu, 01 Dec 2022 13:22:02 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 14:18:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 685
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15717
Expires: Thu, 01 Dec 2022 18:51:30 GMT
Date: Thu, 01 Dec 2022 14:29:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AssD/dcvR/wQbyCL1ZBUiG41H8W59QrHB53p/YDw1k3EuvZysFNTGMMFyoQQsY4IhyRJagyf4yo=
x-amz-request-id: C8H7MEG9TK2PYANV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 13:46:17 GMT
age: 2596
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.mysils.co.uk/favicon.ico
200 OK 345 B URL HTTP/1.1 www.mysils.co.uk/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (492), with no line terminators
Hash 932e2be2ff0cb0d87741e77ef5a0d909
2a00d5604e5cc68b759acabdf9932b9aa0eb1d06
8a42e74ee053a3d1db9e1f533895f5f1fb568ef4eebdfc697fad0cc0872d7e15
GET /favicon.ico HTTP/1.1
Host: www.mysils.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mysils.co.uk/
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: private
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
Date: Thu, 01 Dec 2022 14:29:33 GMT
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:29:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 8bc58417c5326ecabe8930dea5a10d06
8afffc1f0a3669c8a571a91db5b9b9d162052ab1
1a1149fa56b7f02292b123e2c0698d9bcfe598ad123c51ff4d48c3926c929cdf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2310
Cache-Control: max-age=138846
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:29:34 GMT
Etag: "63882ca6-1d7"
Expires: Sat, 03 Dec 2022 05:03:40 GMT
Last-Modified: Thu, 01 Dec 2022 04:25:10 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 14:08:56 GMT
cache-control: public,max-age=3600
age: 1238
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4052
Cache-Control: max-age=157487
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:29:34 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:14:21 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
mysils2.weebly.com/
200 OK 7.4 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1405), with CRLF, LF line terminators
Hash 8691015df32d64a783b0bf38507a0a38
298b5583d8011901720c1d2cf48227b1bc63e91f
5bcc34d35ed74227c19878975156c585fe196fea21ce4dc24c7bb2526894438a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mysils.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 14:29:34 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=mysils2.weebly.com
language=en; expires=Thu, 15-Dec-2022 14:29:34 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"34770800f7f599ffb87ccb7282c96436-gzip"
Content-Encoding: gzip
X-Host: blu68.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 7433
Keep-Alive: timeout=10, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/css/sites.css?buildTime=1669228371
200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1669228371
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 23 Nov 2022 18:03:25 GMT
etag: W/"637e606d-347ac"
expires: Wed, 07 Dec 2022 18:34:40 GMT
cache-control: max-age=1209600
x-host: grn99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676493
x-served-by: cache-sjc10072-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 70, 73
x-timer: S1669904975.665594,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
200 OK 34 kB URL HTTP/2 cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP
File type ASCII text, with very long lines (65483)
Hash 67a5a77f65f13559b3d723829f2e0108
5e861ec7c2993abffc3591d6132c47bc7cdc3e98
ac4ffabaed7382810a3829d812e1a45c77984a1dbfaf7d172c8bc19b3cf68ca6
GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 20:15:51 GMT
etag: "63866877-16dc4"
expires: Tue, 13 Dec 2022 23:08:14 GMT
cache-control: max-age=1209600
x-host: grn99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 141680
x-served-by: cache-sjc10032-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 84, 1042
x-timer: S1669904975.668184,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/theme-plugins.js?buildTime=1669228371
200 OK 3.7 kB URL HTTP/2 cdn2.editmysite.com/js/site/theme-plugins.js?buildTime=1669228371
IP
File type ASCII text, with very long lines (12622), with no line terminators
Hash 326fac3bf2f5a48ddb695ce00260efd8
824134c8f3cbfc5b0ce818dcb0befc99842e4fa6
8fa81dbf4afb7142ee09f89d14e23fd44928c782bced6ef6c44fe9515429af50
GET /js/site/theme-plugins.js?buildTime=1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 18:03:49 GMT
etag: "637e6085-314e"
expires: Wed, 07 Dec 2022 18:41:09 GMT
cache-control: max-age=1209600
x-host: grn129.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676105
x-served-by: cache-sjc10051-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 34, 2
x-timer: S1669904975.668940,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3747
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1669754019
200 OK 1.4 kB URL HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1669754019
IP
File type ASCII text, with very long lines (3600), with no line terminators
Hash 121a5b9688d8e70ee7bb06cc79491f76
3a28220baa7d8879270c8311bed7dddefa7e43e9
181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
GET /js/site/footerSignup.js?buildTime=1669754019 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 20:16:26 GMT
etag: "6386689a-e10"
expires: Tue, 13 Dec 2022 20:36:21 GMT
cache-control: max-age=1209600
x-host: blu114.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 150793
x-served-by: cache-sjc10038-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 53, 523
x-timer: S1669904975.673211,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/slideshow/slideshow.css?1669228371
200 OK 1.5 kB URL HTTP/2 cdn2.editmysite.com/css/old/slideshow/slideshow.css?1669228371
IP
File type ASCII text, with very long lines (7352)
Hash ba9bbd4df86b5b255f5ef44658e52130
3970cecb6939475f95556c2d32d17de0d1645f32
244b7b062e6e558009c622e46008d5542604b9163315220199a2ac50868ff3e5
GET /css/old/slideshow/slideshow.css?1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 23 Nov 2022 18:03:46 GMT
etag: W/"637e6082-1cb9"
expires: Wed, 07 Dec 2022 18:41:10 GMT
cache-control: max-age=1209600
x-host: grn129.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676104
x-served-by: cache-sjc10043-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 51, 1
x-timer: S1669904975.668088,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1488
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Montserrat/font.css?2
200 OK 276 B URL HTTP/2 cdn2.editmysite.com/fonts/Montserrat/font.css?2
IP
Hash 559eefb63fcae2a3f85471dd3903016a
5e4a9f5b529f2f6d2ee1de511231f856e673066c
09110f0d179c52677e2caf24d4bad70e5d717acb2eff2887ac36dbc1d9583fae
GET /fonts/Montserrat/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 17 Nov 2022 13:30:30 GMT
etag: "63763776-354"
expires: Thu, 01 Dec 2022 18:07:57 GMT
cache-control: max-age=1209600
x-host: grn48.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 1196498
x-served-by: cache-sjc10070-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 3196
x-timer: S1669904975.678334,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 276
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1669228371
200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1669228371
IP
File type ASCII text, with very long lines (13080)
Hash fb01936665bf947e2d4f6037eb524680
6a5fc5e0ad1b4e39e555c273eb0da99d087fcc81
def072e787fcbb67f16d819a2ca445faecfd9168530827473a4e199cb6b93345
GET /css/social-icons.css?buildtime=1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 23 Nov 2022 18:03:25 GMT
etag: W/"637e606d-3319"
expires: Wed, 07 Dec 2022 18:34:24 GMT
cache-control: max-age=1209600
x-host: blu141.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676510
x-served-by: cache-sjc10022-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 33, 47
x-timer: S1669904975.678747,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1640
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Source_Sans_Pro/font.css?2
200 OK 404 B URL HTTP/2 cdn2.editmysite.com/fonts/Source_Sans_Pro/font.css?2
IP
Hash dcdc778275d0a4faa830ef279f0e2481
930fcab007b065780a71c0428eb78cf132d18943
8e92423d8a8ddc705b8e62d8e5f2867057b29cc3feebfb1505add954b9d098a1
GET /fonts/Source_Sans_Pro/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 21 Nov 2022 20:04:54 GMT
etag: "637bd9e6-df8"
expires: Tue, 06 Dec 2022 08:46:55 GMT
cache-control: max-age=1209600
x-host: blu65.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 798159
x-served-by: cache-sjc10077-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 7384, 1
x-timer: S1669904975.681001,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 404
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/PT_Sans/font.css?2
200 OK 328 B URL HTTP/2 cdn2.editmysite.com/fonts/PT_Sans/font.css?2
IP
Hash c9399a3f8508c82220ff3756b85d1aef
093d289440ccb67bdbf01e118674fcc90d484f4e
207f9ca3306923b7551481f1418a8acad26e2b9ac236707cad7779b4ac3d0175
GET /fonts/PT_Sans/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 29 Nov 2022 18:50:37 GMT
etag: "6386547d-6b6"
expires: Thu, 15 Dec 2022 09:11:33 GMT
cache-control: max-age=1209600
x-host: blu154.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 19082
x-served-by: cache-sjc10083-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 2
x-timer: S1669904975.681580,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 328
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
Hash e794269b411a4d134398722b03e0d3ee
cb8d7006dd4bbde9072cd299c1a8d1e2d99b524e
51fec15cd0d682a8d1065ece9fec15c62b000f16d6426ea565cb7b8f580bac14
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B52C6C047385E4CF8A1F11C7E3F41D4238B30977"
Expires: Fri, 02 Dec 2022 02:00:00 GMT
Last-Modified: Thu, 01 Dec 2022 14:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 457
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772c840bef59b51d-OSL
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1669228371&
200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1669228371&
IP
File type ASCII text, with very long lines (65024)
Hash d8a96093e4ac9525ad79fcfd57d8ef8a
c69965f81400795e52e7795f2befbb62dc84dbeb
260dadf35ac438d5101a0c5ad9f48d631d6e9652e92761af42e81338153831f2
GET /js/lang/en/stl.js?buildTime=1669228371& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 18:02:23 GMT
etag: "637e602f-2c00a"
expires: Wed, 07 Dec 2022 18:34:24 GMT
cache-control: max-age=1209600
x-host: grn70.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676509
x-served-by: cache-sjc10036-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 70, 46
x-timer: S1669904975.668314,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 32668
X-Firefox-Spdy: h2
mysils2.weebly.com/files/main_style.css?1669498867
200 OK 4.9 kB URL HTTP/1.1 mysils2.weebly.com/files/main_style.css?1669498867
IP
File type ASCII text, with very long lines (477)
Hash 8e1310ffbeac2d71747b439c11d9f0ce
c500bd585044ecbe7323049097d877f460f8782d
c675442711aaf6303b72c2e065609bf5336e7a8e3ed2a8399be2ff686051440b
Analyzer Verdict Alert fortinet Phishing
GET /files/main_style.css?1669498867 HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:34 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu70.sf2p.intern.weebly.net
Content-Encoding: gzip
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5Sc1bJ6J+LHo+XXqDTTc6w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uXrWCfCUo0cZcI0qs/9c23pWGLg=
cdn2.editmysite.com/js/old/slideshow-jq.js?buildTime=1669228371
200 OK 13 kB URL HTTP/2 cdn2.editmysite.com/js/old/slideshow-jq.js?buildTime=1669228371
IP
File type ASCII text, with very long lines (32013)
Hash da04d4da36c827437eb064334cf40561
b54b259c2dce4a00e265deddf2ee0941dda6ed40
0064ed54b2f6244cda5252037026ceb744b58067811265aa1a10c3f7cd937b3a
GET /js/old/slideshow-jq.js?buildTime=1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 18:03:49 GMT
etag: "637e6085-9e0b"
expires: Wed, 07 Dec 2022 18:41:10 GMT
cache-control: max-age=1209600
x-host: blu66.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676105
x-served-by: cache-sjc10021-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 5765, 1
x-timer: S1669904975.668655,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13265
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1669228371
200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1669228371
IP
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 23 Nov 2022 18:03:31 GMT
etag: "637e6073-f47"
expires: Wed, 07 Dec 2022 18:40:08 GMT
cache-control: max-age=1209600
x-host: grn123.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676166
x-served-by: cache-sjc10023-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 60
x-timer: S1669904975.681016,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1669228371
200 OK 159 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1669228371
IP
File type ASCII text, with very long lines (32007)
Size 159 kB (158975 bytes)
Hash c29a5e4fd4ee0d3b7cd0597f2b9b602b
bb134ed641467954f4a724167dc7ea56a03e7fa8
bf9850a7e6dd269898b78ecf07a34438bc300cad0bbb2d280e10ccadf81646b2
GET /js/site/main-customer-accounts-site.js?buildTime=1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 18:03:49 GMT
etag: "637e6085-8250f"
expires: Wed, 07 Dec 2022 18:41:08 GMT
cache-control: max-age=1209600
x-host: blu31.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676106
x-served-by: cache-sjc10083-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 113272, 3
x-timer: S1669904975.678378,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 158975
X-Firefox-Spdy: h2
mysils2.weebly.com/files/theme/mobile.js?1643661906
200 OK 3.0 kB URL HTTP/1.1 mysils2.weebly.com/files/theme/mobile.js?1643661906
IP
Hash 631a33b5d54f8b9320a1e617359537ad
9d5945b578853de6c71fe8be3885996c01ec0282
1b36cc60c967158248958be353833689dd3cfa3bdd16a1d6a6794a3674b4f68b
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/mobile.js?1643661906 HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 31 Oct 2021 18:48:41 GMT
x-rgw-object-type: Normal
ETag: W/"343adc9317f9a231de1f318fdd796b36"
x-amz-request-id: tx000000000000002790934-006285203b-b9fbc20-sfo1
X-Storage-Bucket: z6fab
X-Storage-Object: 6fabaadb74fc57e1211df698700cb9425402918a525706e2165509c04639f862
X-Host: blu149.sf2p.intern.weebly.net
Content-Encoding: gzip
mysils2.weebly.com/uploads/1/4/0/6/140665712/published/mindful_3.png
200 OK 6.2 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/published/mindful_3.png
IP
File type PNG image data, 97 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 664b517e7f3f60b4ac2c4631a3dc7dbb
3f43541a5cfbe553b268d6a45997e561acb4eb4f
f9be457436511e7a7393da2313a182e5d591801492bac8d2bff6035297b08a21
GET /uploads/1/4/0/6/140665712/published/mindful_3.png HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/png
Content-Length: 6163
Connection: keep-alive
Last-Modified: Thu, 03 Feb 2022 21:58:04 GMT
x-rgw-object-type: Normal
ETag: "664b517e7f3f60b4ac2c4631a3dc7dbb"
x-amz-request-id: tx00000000000003e78369b-006388ba4f-c696eea-sfo1
X-Storage-Bucket: zf9be
X-Storage-Object: f9be457436511e7a7393da2313a182e5d591801492bac8d2bff6035297b08a21
X-Host: grn47.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/files/theme/custom.js?1643661906
200 OK 3.4 kB URL HTTP/1.1 mysils2.weebly.com/files/theme/custom.js?1643661906
IP
Hash 89cf32f98011a2fa16a692e9910e6ef7
ecf3d2c4ba8a2579033e970bbb7ba7b51558868a
49499261fbab6930526e70c93c5f432bbb72f92685fc6708aa1712b0a7cf3385
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/custom.js?1643661906 HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: application/javascript
Content-Length: 3352
Connection: keep-alive
Last-Modified: Mon, 11 May 2020 06:00:38 GMT
x-rgw-object-type: Normal
ETag: "89cf32f98011a2fa16a692e9910e6ef7"
x-amz-request-id: tx000000000000000048bcd-006258b66f-4d6022f-las
X-Storage-Bucket: z4949
X-Storage-Object: 49499261fbab6930526e70c93c5f432bbb72f92685fc6708aa1712b0a7cf3385
X-Host: blu25.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/published/screenshot-2022-02-03-at-22-16-20_3.png
200 OK 11 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/published/screenshot-2022-02-03-at-22-16-20_3.png
IP
File type PNG image data, 324 x 174, 8-bit/color RGBA, non-interlaced\012- data
Hash 95a80811a72c0161c50def5786ae6ba7
fbc915c5e1fe184d07222569e197dc29475076a4
2f3cef5d6505b945879cce3517467062057bc5473f0ffb671dc8a4120d558b4a
GET /uploads/1/4/0/6/140665712/published/screenshot-2022-02-03-at-22-16-20_3.png HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/png
Content-Length: 11093
Connection: keep-alive
Last-Modified: Thu, 03 Feb 2022 22:18:38 GMT
x-rgw-object-type: Normal
ETag: "95a80811a72c0161c50def5786ae6ba7"
x-amz-request-id: tx00000000000003d880f7c-006388ba4f-c6aed46-sfo1
X-Storage-Bucket: z2f3c
X-Storage-Object: 2f3cef5d6505b945879cce3517467062057bc5473f0ffb671dc8a4120d558b4a
X-Host: grn29.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/files/theme/plugins.js?1643661906
200 OK 19 kB URL HTTP/1.1 mysils2.weebly.com/files/theme/plugins.js?1643661906
IP
Hash 55c59f666197b7335778c9c7026d8ac2
a06805611e338a5ee3b604d16ab15a5ca7e280dd
f651509afa984760bf38baf2087e32bca361e51469824980d3a0553da273e562
GET /files/theme/plugins.js?1643661906 HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 28 Jul 2021 13:27:14 GMT
x-rgw-object-type: Normal
ETag: W/"a8bf2ebe41b28e96d5d8deb2b83e0ee3"
x-amz-request-id: tx0000000000000010a8505-0061a74c51-a9f41e7-sfo1
X-Storage-Bucket: z2829
X-Storage-Object: 2829e73e900aef1b3608efa7458c3cfc249e334cd561b2d33ecd84a6ef189cf8
X-Host: blu70.sf2p.intern.weebly.net
Content-Encoding: gzip
mysils2.weebly.com/files/theme/images/hamburger.png?1669498867
200 OK 1.2 kB URL HTTP/1.1 mysils2.weebly.com/files/theme/images/hamburger.png?1669498867
IP
File type PNG image data, 60 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b82f78f9933542b3fe62d2e82be7317
c24f6933a7b7a9ed8f2392e6c82c504125748fd2
938326fb212b333055e70fd12b4928d35f4a00de6a46f16375b1be6cc3fd022c
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/images/hamburger.png?1669498867 HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/files/main_style.css?1669498867
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/png; charset=binary
Content-Length: 1206
Connection: keep-alive
Last-Modified: Fri, 08 Apr 2022 20:35:45 GMT
x-rgw-object-type: Normal
ETag: "8b82f78f9933542b3fe62d2e82be7317"
x-amz-request-id: tx0000000000000028eb683-00628528a0-b9fbc64-sfo1
X-Storage-Bucket: z9383
X-Storage-Object: 938326fb212b333055e70fd12b4928d35f4a00de6a46f16375b1be6cc3fd022c
X-Host: grn29.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/files/theme/images/close.png?1669498867
200 OK 1.9 kB URL HTTP/1.1 mysils2.weebly.com/files/theme/images/close.png?1669498867
IP
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash b53fc37ac0ce4c49e30a4f0d96fc360e
4e08d53a8bc1ce6a0e5b31230b76e5bbdc6eae7f
096c1cd5be494d95151de0c1baa1093ad34067f455be527f0b190f73e0e76c4e
GET /files/theme/images/close.png?1669498867 HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/files/main_style.css?1669498867
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/png; charset=binary
Content-Length: 1878
Connection: keep-alive
Last-Modified: Fri, 10 Apr 2020 19:20:16 GMT
x-rgw-object-type: Normal
ETag: "b53fc37ac0ce4c49e30a4f0d96fc360e"
x-amz-request-id: tx0000000000000027c90aa-006285227d-b9fbc20-sfo1
X-Storage-Bucket: z096c
X-Storage-Object: 096c1cd5be494d95151de0c1baa1093ad34067f455be527f0b190f73e0e76c4e
X-Host: blu140.sf2p.intern.weebly.net
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19866
Expires: Thu, 01 Dec 2022 20:00:42 GMT
Date: Thu, 01 Dec 2022 14:29:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19866
Expires: Thu, 01 Dec 2022 20:00:42 GMT
Date: Thu, 01 Dec 2022 14:29:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19866
Expires: Thu, 01 Dec 2022 20:00:42 GMT
Date: Thu, 01 Dec 2022 14:29:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19866
Expires: Thu, 01 Dec 2022 20:00:42 GMT
Date: Thu, 01 Dec 2022 14:29:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19866
Expires: Thu, 01 Dec 2022 20:00:42 GMT
Date: Thu, 01 Dec 2022 14:29:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: b7c0e28a-de0d-443d-8bf4-900a964bf110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uSFcMoAMF2CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc1-7abade3a670201cf1906b79f;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gZSkafSw8cXo9AChLOTVJW7r_hHLW8kaHlA-ED2_zFJwuUk1uS3VRw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:29:36 GMT
age: 3600
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 60243
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 12:31:43 GMT
age: 7073
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 60016
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:44:47 GMT
age: 60289
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 10:48:24 GMT
age: 13272
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mysils2.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
200 OK 348 B URL HTTP/1.1 mysils2.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://mysils2.weebly.com
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 14:29:35 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn9.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=54
Connection: Keep-Alive
Content-Type: application/json
mysils2.weebly.com/uploads/1/4/0/6/140665712/296100026-5286634608082853-1895920472818152271-n_1_orig.jpg
200 OK 40 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/296100026-5286634608082853-1895920472818152271-n_1_orig.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x640, components 3\012- data
Hash 8a90659b94df50b985ede86084fa3a04
9d4da839d9495f236ece5577f9018d29e760131f
f4f989be0007ac4656ff7120b302aff6a44731d0f0a7a185791ac815e2718f5c
GET /uploads/1/4/0/6/140665712/296100026-5286634608082853-1895920472818152271-n_1_orig.jpg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/jpeg
Content-Length: 40290
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 17:27:27 GMT
x-rgw-object-type: Normal
ETag: "8a90659b94df50b985ede86084fa3a04"
x-amz-request-id: tx0000000000000385ffed6-00637df005-c699baa-sfo1
X-Storage-Bucket: zf4f9
X-Storage-Object: f4f989be0007ac4656ff7120b302aff6a44731d0f0a7a185791ac815e2718f5c
X-Host: grn47.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 77a1c252757c0c4c21a6c4b3050b9f31
10bce9ff831b2848cd170409c0503b7871cc815e
de86db6c070c70ba0ad83814e7f4584f2b941fc6b54fb7f0bf2fef55a255c29e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100956
Date: Thu, 01 Dec 2022 14:29:36 GMT
Etag: "63879623-1d7"
Expires: Fri, 02 Dec 2022 18:32:12 GMT
Last-Modified: Wed, 30 Nov 2022 17:42:59 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FjuqTYNTWY2it0aoeVyjnpF1sHcd5I9_2mrHpGxk4VXimIlxfGP9ig==
Age: 2953
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 77a1c252757c0c4c21a6c4b3050b9f31
10bce9ff831b2848cd170409c0503b7871cc815e
de86db6c070c70ba0ad83814e7f4584f2b941fc6b54fb7f0bf2fef55a255c29e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100555
Date: Thu, 01 Dec 2022 14:29:36 GMT
Etag: "63879623-1d7"
Expires: Fri, 02 Dec 2022 18:25:31 GMT
Last-Modified: Wed, 30 Nov 2022 17:42:59 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FYh0MODbs4jZNxpwGbFcW_ozSROiNDG-WI1boE22xzNE1mnk97IUdw==
Age: 2552
mysils2.weebly.com/uploads/1/4/0/6/140665712/278538797-5063202677092715-916315446102762001-n_1_orig.jpeg
200 OK 85 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/278538797-5063202677092715-916315446102762001-n_1_orig.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1100x754, components 3\012- data
Hash 3930fb26897f4374008e59dc790ddaee
3438e90681d040e77b4450d05e21dc6de6322440
4a252f908f177c1569f5d56cc1624262d738101bbd9230147fb7a6c1c72c1e26
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/278538797-5063202677092715-916315446102762001-n_1_orig.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/jpeg
Content-Length: 84610
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:15 GMT
x-rgw-object-type: Normal
ETag: "3930fb26897f4374008e59dc790ddaee"
x-amz-request-id: tx00000000000003e918bfa-006388ba4f-c669cc6-sfo1
X-Storage-Bucket: z4a25
X-Storage-Object: 4a252f908f177c1569f5d56cc1624262d738101bbd9230147fb7a6c1c72c1e26
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/279013600-5015131955233121-49532986763373502-n_1_orig.jpeg
200 OK 115 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/279013600-5015131955233121-49532986763373502-n_1_orig.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1100x733, components 3\012- data
Size 115 kB (114836 bytes)
Hash 956cac69d15ed2741dcc4995d6c6a957
8d0180903a858d8681b959d6f6d9e25c74a5f4ef
2dbd0abc319d021af7ec87cae6157e9015de6d08a6ad3b311983029837dc9f41
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/279013600-5015131955233121-49532986763373502-n_1_orig.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/jpeg
Content-Length: 114836
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:19 GMT
x-rgw-object-type: Normal
ETag: "956cac69d15ed2741dcc4995d6c6a957"
x-amz-request-id: tx00000000000003c4fbd1c-006386571e-c67eadd-sfo1
X-Storage-Bucket: z2dbd
X-Storage-Object: 2dbd0abc319d021af7ec87cae6157e9015de6d08a6ad3b311983029837dc9f41
X-Host: blu110.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/296100026-5286634608082853-1895920472818152271-n_1.jpg
200 OK 40 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/296100026-5286634608082853-1895920472818152271-n_1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x640, components 3\012- data
Hash 8a90659b94df50b985ede86084fa3a04
9d4da839d9495f236ece5577f9018d29e760131f
f4f989be0007ac4656ff7120b302aff6a44731d0f0a7a185791ac815e2718f5c
GET /uploads/1/4/0/6/140665712/296100026-5286634608082853-1895920472818152271-n_1.jpg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/jpeg
Content-Length: 40290
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 17:27:27 GMT
x-rgw-object-type: Normal
ETag: "8a90659b94df50b985ede86084fa3a04"
x-amz-request-id: tx00000000000003b855337-006383e526-c696eea-sfo1
X-Storage-Bucket: zf4f9
X-Storage-Object: f4f989be0007ac4656ff7120b302aff6a44731d0f0a7a185791ac815e2718f5c
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mysils2.weebly.com/
Origin: https://mysils2.weebly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 14:29:36 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://mysils2.weebly.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1823
Origin: https://mysils2.weebly.com
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 14:29:36 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=946dd679-1d74-4f0d-ad3a-d8983f82c8c9; Expires=Fri, 01 Dec 2023 14:29:36 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://mysils2.weebly.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
mysils2.weebly.com/uploads/1/4/0/6/140665712/278538797-5063202677092715-916315446102762001-n_1.jpeg
200 OK 52 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/278538797-5063202677092715-916315446102762001-n_1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x548, components 3\012- data
Hash b41066b47e0244c07aea8c0245f6c60e
fa4bf69d5b4581056051957c58f9c0ab375b75d2
ce30e49fdb6e8d285a3a9dd7907d7b73ad5585ab869134c3fbeb2601beabfb5f
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/278538797-5063202677092715-916315446102762001-n_1.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 52438
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:16 GMT
x-rgw-object-type: Normal
ETag: "b41066b47e0244c07aea8c0245f6c60e"
x-amz-request-id: tx0000000000000377b973e-00637e3322-c6aed46-sfo1
X-Storage-Bucket: zce30
X-Storage-Object: ce30e49fdb6e8d285a3a9dd7907d7b73ad5585ab869134c3fbeb2601beabfb5f
X-Host: blu43.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/background-images/666471795.jpeg
200 OK 240 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/background-images/666471795.jpeg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1024x769, components 3\012- data
Size 240 kB (239728 bytes)
Hash 45e00c7df7ec7e331bb3bc58d78a306f
6265d9e7c2e604449e06f77ff455425b61b79b90
58d3f13a0ffce1d1c869a16023ebdf3103d19b5bcef3763e0f4420deb6bfbfaa
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/background-images/666471795.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:35 GMT
Content-Type: image/jpeg
Content-Length: 239728
Connection: keep-alive
Last-Modified: Fri, 18 Mar 2022 11:58:39 GMT
x-rgw-object-type: Normal
ETag: "45e00c7df7ec7e331bb3bc58d78a306f"
x-amz-request-id: tx00000000000003b18d5eb-00638484c5-c67eadd-sfo1
X-Storage-Bucket: z58d3
X-Storage-Object: 58d3f13a0ffce1d1c869a16023ebdf3103d19b5bcef3763e0f4420deb6bfbfaa
X-Host: blu26.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/280364956-5063202680426048-795907486019829735-n_1.jpeg
200 OK 66 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280364956-5063202680426048-795907486019829735-n_1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x548, components 3\012- data
Hash 04ac4bf723797140d083ba0c54ac8640
f3d5e55992c081388d167c5b83aa218431a54b9a
14db11fdb7787de245913a50642d1a174f822c19cd5026d20205f80bcd25b7ca
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280364956-5063202680426048-795907486019829735-n_1.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 66290
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:25 GMT
x-rgw-object-type: Normal
ETag: "04ac4bf723797140d083ba0c54ac8640"
x-amz-request-id: tx00000000000003ed51ebe-006388ba50-c695612-sfo1
X-Storage-Bucket: z14db
X-Storage-Object: 14db11fdb7787de245913a50642d1a174f822c19cd5026d20205f80bcd25b7ca
X-Host: grn61.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/279369112-5031141743632142-4716604573743384887-n_1.jpeg
200 OK 96 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/279369112-5031141743632142-4716604573743384887-n_1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x603, components 3\012- data
Hash 16739e67dfd7870ed61c36103d76cc9c
589aaf124474af6c000d91dff836a2f7d879cd9a
350fc5cb3361c91842badcf689694d0b94edf081921d3be0f95308102cab3ace
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/279369112-5031141743632142-4716604573743384887-n_1.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 95962
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:23 GMT
x-rgw-object-type: Normal
ETag: "16739e67dfd7870ed61c36103d76cc9c"
x-amz-request-id: tx00000000000003e918c4e-006388ba50-c669cc6-sfo1
X-Storage-Bucket: z350f
X-Storage-Object: 350fc5cb3361c91842badcf689694d0b94edf081921d3be0f95308102cab3ace
X-Host: grn61.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/280372292-5063202683759381-6714657843980520939-n_1.jpeg
200 OK 62 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280372292-5063202683759381-6714657843980520939-n_1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x551, components 3\012- data
Hash 5c60f84745be4a425acdad132a8610b5
22b41fffe5f93b8e35d09f21aaa09ceb5fe51278
9882cb8ded36cdabbcad5f5d3a36ecb6540123bb4f469254cd9c243fc58a4bb7
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280372292-5063202683759381-6714657843980520939-n_1.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 61561
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:27 GMT
x-rgw-object-type: Normal
ETag: "5c60f84745be4a425acdad132a8610b5"
x-amz-request-id: tx00000000000003b7ea83a-0063853fa0-c6aed46-sfo1
X-Storage-Bucket: z9882
X-Storage-Object: 9882cb8ded36cdabbcad5f5d3a36ecb6540123bb4f469254cd9c243fc58a4bb7
X-Host: grn132.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/279013600-5015131955233121-49532986763373502-n_1.jpeg
200 OK 68 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/279013600-5015131955233121-49532986763373502-n_1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x533, components 3\012- data
Hash 9870af33e31cde4525a91df2429bd9ad
9d6f8cdf9b9ca3da358f7455a2e62e20ab330329
31cba437f8c7ac73b1cc027c9cb0ca1148295e38e7c3a0b4dd81898530ab33f0
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/279013600-5015131955233121-49532986763373502-n_1.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 67742
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:19 GMT
x-rgw-object-type: Normal
ETag: "9870af33e31cde4525a91df2429bd9ad"
x-amz-request-id: tx00000000000003d881020-006388ba50-c6aed46-sfo1
X-Storage-Bucket: z31cb
X-Storage-Object: 31cba437f8c7ac73b1cc027c9cb0ca1148295e38e7c3a0b4dd81898530ab33f0
X-Host: grn152.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/280539463-5063202673759382-5378292328421789000-n_1.jpeg
200 OK 68 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280539463-5063202673759382-5378292328421789000-n_1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x551, components 3\012- data
Hash 210434a0329925fa05ff4d2d7baae13c
07d5eed11447ee808dcc41677cd72e69be51cdd1
5623ecc43235a8ebe871f1ad7911853a66c8470b301b29acbeaeb0860ac224c0
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280539463-5063202673759382-5378292328421789000-n_1.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 67683
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:30 GMT
x-rgw-object-type: Normal
ETag: "210434a0329925fa05ff4d2d7baae13c"
x-amz-request-id: tx00000000000003e9599a0-006388ba50-c699baa-sfo1
X-Storage-Bucket: z5623
X-Storage-Object: 5623ecc43235a8ebe871f1ad7911853a66c8470b301b29acbeaeb0860ac224c0
X-Host: blu140.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/280962046-5074555882624061-3722793870700086256-n_1.jpeg
200 OK 83 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280962046-5074555882624061-3722793870700086256-n_1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x792, components 3\012- data
Hash 7a791d4f5404fccbf6a5e64b906ed945
a9e16326afd12394951c1eccfed83632bb4c798a
7686a3b4538ec164bf6a7995d46747ed4dfadd653b9e4a5bb7b11b74b80b59b0
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280962046-5074555882624061-3722793870700086256-n_1.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 83155
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:31 GMT
x-rgw-object-type: Normal
ETag: "7a791d4f5404fccbf6a5e64b906ed945"
x-amz-request-id: tx00000000000003ce1ef78-00638613cb-c696eea-sfo1
X-Storage-Bucket: z7686
X-Storage-Object: 7686a3b4538ec164bf6a7995d46747ed4dfadd653b9e4a5bb7b11b74b80b59b0
X-Host: grn135.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/280372292-5063202683759381-6714657843980520939-n_1_orig.jpeg
200 OK 105 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280372292-5063202683759381-6714657843980520939-n_1_orig.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1100x757, components 3\012- data
Size 105 kB (105375 bytes)
Hash 70e3ced613de813a32b7bd84eb1f0b00
aa942d9325c1663d7faacd02d62dc1cd1de833cf
f82b6e8de3a9419e44853f09c7e66ea43b6d73de7faf76edd7d2f27064024fa4
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280372292-5063202683759381-6714657843980520939-n_1_orig.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 105375
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:27 GMT
x-rgw-object-type: Normal
ETag: "70e3ced613de813a32b7bd84eb1f0b00"
x-amz-request-id: tx00000000000003e9599bc-006388ba50-c699baa-sfo1
X-Storage-Bucket: zf82b
X-Storage-Object: f82b6e8de3a9419e44853f09c7e66ea43b6d73de7faf76edd7d2f27064024fa4
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/279369112-5031141743632142-4716604573743384887-n_1_orig.jpeg
200 OK 166 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/279369112-5031141743632142-4716604573743384887-n_1_orig.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1062x800, components 3\012- data
Size 166 kB (166515 bytes)
Hash ef16d5d7758d6471c0471e8a309910c4
187f01f31187a6b932bbf269436f096cb94134c9
9c6700b2d3f64f36c26beb90c40ac6f7094223cf30971885ae24435212cae2a4
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/279369112-5031141743632142-4716604573743384887-n_1_orig.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 166515
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:23 GMT
x-rgw-object-type: Normal
ETag: "ef16d5d7758d6471c0471e8a309910c4"
x-amz-request-id: tx00000000000003e918ca7-006388ba50-c669cc6-sfo1
X-Storage-Bucket: z9c67
X-Storage-Object: 9c6700b2d3f64f36c26beb90c40ac6f7094223cf30971885ae24435212cae2a4
X-Host: blu25.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:29:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Thu, 01 Dec 2022 14:17:12 GMT
expires: Thu, 01 Dec 2022 16:17:12 GMT
cache-control: public, max-age=7200
age: 745
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:29:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mysils2.weebly.com/uploads/1/4/0/6/140665712/280364956-5063202680426048-795907486019829735-n_1_orig.jpeg
200 OK 112 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280364956-5063202680426048-795907486019829735-n_1_orig.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1100x754, components 3\012- data
Size 112 kB (111889 bytes)
Hash bcaf3d0e104ddf89600950c4cdc0e171
9c5df9ba21678afbb8bcec8a9df9d450a5067912
d8c58bc6f6b5ddec1f73bcae8348091bc07076a56d47111e0ab0bd4fad57c8cb
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280364956-5063202680426048-795907486019829735-n_1_orig.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:36 GMT
Content-Type: image/jpeg
Content-Length: 111889
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:25 GMT
x-rgw-object-type: Normal
ETag: "bcaf3d0e104ddf89600950c4cdc0e171"
x-amz-request-id: tx00000000000003cc7a20f-0063853fa0-c695612-sfo1
X-Storage-Bucket: zd8c5
X-Storage-Object: d8c58bc6f6b5ddec1f73bcae8348091bc07076a56d47111e0ab0bd4fad57c8cb
X-Host: blu26.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/280539463-5063202673759382-5378292328421789000-n_1_orig.jpeg
200 OK 123 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280539463-5063202673759382-5378292328421789000-n_1_orig.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1100x757, components 3\012- data
Size 123 kB (123367 bytes)
Hash 0c73794c6b4acf8c81309356b9204278
9eaaecbbd03922893f671e4bf198f6a9aef93f63
4213080b915055d1dcac4fd9972573bf5cae56147c658fca47c6d3608c7fde0b
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280539463-5063202673759382-5378292328421789000-n_1_orig.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:39 GMT
Content-Type: image/jpeg
Content-Length: 123367
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:29 GMT
x-rgw-object-type: Normal
ETag: "0c73794c6b4acf8c81309356b9204278"
x-amz-request-id: tx00000000000003d24f790-00638669c7-c696eea-sfo1
X-Storage-Bucket: z4213
X-Storage-Object: 4213080b915055d1dcac4fd9972573bf5cae56147c658fca47c6d3608c7fde0b
X-Host: grn135.sf2p.intern.weebly.net
Accept-Ranges: bytes
mysils2.weebly.com/uploads/1/4/0/6/140665712/280962046-5074555882624061-3722793870700086256-n_1_orig.jpeg
200 OK 84 kB URL HTTP/1.1 mysils2.weebly.com/uploads/1/4/0/6/140665712/280962046-5074555882624061-3722793870700086256-n_1_orig.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 808x800, components 3\012- data
Hash 73701484a9514e7eb207339248381496
39c31ce3776d548f1cd2342b328b1eba183b89d0
5142833f21d06aabf082769c72cd70eda0cd56eb8656fee6a5b424796775a2cf
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/0/6/140665712/280962046-5074555882624061-3722793870700086256-n_1_orig.jpeg HTTP/1.1
Host: mysils2.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 14:29:42 GMT
Content-Type: image/jpeg
Content-Length: 84453
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 16:40:31 GMT
x-rgw-object-type: Normal
ETag: "73701484a9514e7eb207339248381496"
x-amz-request-id: tx00000000000003db47d71-006388ba56-c67eadd-sfo1
X-Storage-Bucket: z5142
X-Storage-Object: 5142833f21d06aabf082769c72cd70eda0cd56eb8656fee6a5b424796775a2cf
X-Host: grn47.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/js/site/main.js?buildTime=1669228371
200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1669228371
IP
GET /js/site/main.js?buildTime=1669228371 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 18:03:49 GMT
etag: "637e6085-74804"
expires: Wed, 07 Dec 2022 18:41:08 GMT
cache-control: max-age=1209600
x-host: blu33.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
age: 676107
x-served-by: cache-sjc10036-SJC, cache-bma1635-BMA
x-cache: HIT, HIT
x-cache-hits: 22, 3
x-timer: S1669904975.668463,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
200 OK 0 B URL HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mysils2.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdujQNpHaXULXK5hWOudOsrFbrCOJBmkXkf6lNHnzHxB1q3PphW4yFVZQbxms7rfGEwEu0IdDaAyLbpAPqDN6NvCrqCgiKDD
cache-control: public, max-age=86400, s-maxage=259200
expires: Thu, 06 Oct 2022 22:59:09 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Thu, 01 Dec 2022 14:29:34 GMT
via: 1.1 varnish
age: 142124
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 650
x-timer: S1669904975.678358,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2
88.208.252.9
34.102.187.140
104.18.20.226
23.36.76.226