Overview

URL btconnect-109798.square.site/
IP199.34.228.39
ASNWEEBLY
Location United States
Report completed2022-10-03 22:33:39 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
2022-10-03 2 btconnect-109798.square.site/ BT Group plc
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-03 2 btconnect-109798.square.site/ Phishing
2022-10-03 2 btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226 (...) Phishing
2022-10-03 2 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout: (...) Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg Phishing
2022-10-03 2 btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/custome (...) Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/applepay.svg Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/visa.svg Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg Phishing
2022-10-03 2 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSeg (...) Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/discover.svg Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/jcb.svg Phishing
2022-10-03 2 btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg Phishing
2022-10-03 2 btconnect-109798.square.site/square.ico Phishing
2022-10-03 2 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout: (...) Phishing
2022-10-03 2 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout: (...) Phishing
2022-10-03 2 btconnect-109798.square.site/app/website/square.ico Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ec.editmysite.com (3) 12806 2017-01-29 21:50:35 UTC 2022-10-03 13:24:16 UTC 44.235.202.207
mnemonic passive DNS sentry.io (1) 2743 2016-08-31 05:38:44 UTC 2022-10-03 12:28:36 UTC 35.188.42.15
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-03 17:23:50 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-03 08:07:24 UTC 34.160.144.191
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-03 09:28:24 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-10-03 20:32:42 UTC 93.184.220.29
mnemonic passive DNS cdn3.editmysite.com (49) 32188 2019-02-20 02:08:33 UTC 2022-10-03 14:58:00 UTC 151.101.85.46
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-03 09:28:24 UTC 52.40.161.235
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-03 14:02:45 UTC 34.120.237.76
mnemonic passive DNS cdn5.editmysite.com (1) 43128 2021-05-28 13:57:33 UTC 2022-10-03 17:37:44 UTC 151.101.85.46
mnemonic passive DNS btconnect-109798.square.site (18) 0 2022-06-02 09:12:51 UTC 2022-09-05 11:25:35 UTC 199.34.228.39 Domain (square.site) ranked at: 22579
mnemonic passive DNS ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-10-03 07:33:36 UTC 23.36.77.32
mnemonic passive DNS ocsp.entrust.net (1) 1208 2013-07-24 12:09:14 UTC 2022-10-03 07:12:04 UTC 104.110.10.32
mnemonic passive DNS cdn2.editmysite.com (1) 11564 2012-10-02 18:27:39 UTC 2022-10-03 13:24:15 UTC 151.101.85.46


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.39

Date UQ / IDS / BL URL IP
2022-12-03 03:49:21 +0000
0 - 0 - 12 btinternet-107738.square.site/ 199.34.228.39
2022-12-02 05:14:55 +0000
0 - 0 - 12 updatedgroupedbyattmail.square.site/ 199.34.228.39
2022-12-02 04:26:15 +0000
0 - 0 - 22 aol-103369.square.site/ 199.34.228.39
2022-12-01 15:51:54 +0000
0 - 0 - 5 british-telecommunicationspay883.square.site/ 199.34.228.39
2022-12-01 15:49:36 +0000
0 - 0 - 20 yahoo-103657.square.site/ 199.34.228.39

Last 5 reports on ASN: WEEBLY

Date UQ / IDS / BL URL IP
2022-12-04 03:11:52 +0000
0 - 0 - 8 zepedalawfirm.com/contact-us.html 199.34.228.65
2022-12-04 03:16:18 +0000
0 - 0 - 8 xoxoolixo.weebly.com/ 199.34.228.54
2022-12-04 03:14:38 +0000
0 - 0 - 19 xmailser.weebly.com/ 199.34.228.54
2022-12-04 00:39:21 +0000
0 - 0 - 10 aol-106858.square.site/ 199.34.228.40
2022-12-03 23:26:11 +0000
0 - 0 - 20 docusignsecirutmadmjg.weebly.com/ 199.34.228.54

Last 5 reports on domain: square.site

Date UQ / IDS / BL URL IP
2022-12-04 00:39:21 +0000
0 - 0 - 10 aol-106858.square.site/ 199.34.228.40
2022-12-03 03:49:21 +0000
0 - 0 - 12 btinternet-107738.square.site/ 199.34.228.39
2022-12-02 18:03:37 +0000
0 - 0 - 7 yahuomall.square.site/ 199.34.228.40
2022-12-02 17:26:36 +0000
0 - 0 - 5 verifieddyahoo.square.site/ 199.34.228.40
2022-12-02 05:14:55 +0000
0 - 0 - 12 updatedgroupedbyattmail.square.site/ 199.34.228.39

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-05 11:25:46 +0000
0 - 0 - 34 btconnect-109798.square.site/ 199.34.228.40
2022-11-13 19:39:27 +0000
0 - 0 - 4 test.checklogin.random1s.net/ 103.200.23.188


JavaScript

Executed Scripts (34)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (95)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 21:46:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ykr_bC5VU5jeobX4VhTjQkzxfIBPCbHOE1voyegpQMpO7yGD12Z81Q==
Age: 2789


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10920
Expires: Tue, 04 Oct 2022 01:35:28 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "69D097718CAC37CC6B77D417711C4356557F2B47C78026303BFE5F985B94A5A5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3856
Expires: Mon, 03 Oct 2022 23:37:44 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 12yn3ZG5sihTHtUOoRRIwmhMlmg//iX22XPVsk+ffcB01JyYOPHZbo5KrjAO7Jv5cJ5L0BBbiLw=
x-amz-request-id: BN5K6CT762XFVQ5W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 03 Oct 2022 21:50:48 GMT
age: 2560
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 03 Oct 2022 22:33:28 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "7B362FAC9BEEE74E53716206A6349049AC6729A51BF4C6A7757C6AC48DBF8760"
Last-Modified: Mon, 03 Oct 2022 10:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3533
Expires: Mon, 03 Oct 2022 23:32:21 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1586
Md5:    cb4e313b3e96c9b8f3d6154ed341e85b
Sha1:   20a0f3adcdc859c61e858f9497de0f9959536b33
Sha256: 7b362fac9beee74e53716206a6349049ac6729a51bf4c6a7757c6ac48dbf8760
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 03 Oct 2022 22:29:33 GMT
Expires: Mon, 03 Oct 2022 23:08:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9In5jpHhBI6raDmDHz6Pm0gEY8zsbwEYtmhyfp-5AjszEJA3PeYkjw==
Age: 236


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET / HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.1.1654494730.1654494728.31da809a-5d97-4f1c-b3dc-23df3825d286; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:29 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/ XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/ PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn127.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 928148694dd323c1645a7dd07de4002f
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18390)
Size:   8932
Md5:    0e8b1be4b6a1b0a431889f27e558d2ed
Sha1:   77684deac0de564f325e119b58c6db22d1daa3ae
Sha256: b1205f7cf2a92d6df9ace7a2dc8b45cd981c3754bbc9529ed00b71b7c401669a

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3631
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 22:33:29 GMT
Last-Modified: Mon, 03 Oct 2022 21:32:58 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Mon, 26 Sep 2022 19:03:21 GMT
x-rgw-object-type: Normal
etag: W/"05454a03ebeda68e1812a6dbf3b74b36"
x-amz-request-id: tx00000000000000a2fe462-006331f862-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 617164
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.470674,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 22787
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (64282), with no line terminators
Size:   22787
Md5:    4204e7970c3000f76d8b4551eb84f772
Sha1:   ab466cb335d09874f07ef69cc41cfd1517df9df3
Sha256: c7d3724efd7ee58c4e5a3a33bd68847f6a03df2cb84c1220d7d215677ba1d3a1
                                        
                                            GET /app/website/css/site.348ed5d4d0fd8c90d668.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"9d2dd98d61deb4cacb57697fb2a1b804"
x-amz-request-id: tx00000000000000f958eeb-00633b21b0-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ca837640b076da822e769273456dfe43
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.470691,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 23170
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65074), with no line terminators
Size:   23170
Md5:    1aedd91ec5ab26c8d56ec06533912c00
Sha1:   cebbdae9a5c667f76bbf3ca0afcfd67f96a244d6
Sha256: d00feb0fc8e722e279adbd32bb715a7357a801127afe152f326e113a0e230fcd
                                        
                                            GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1199601
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1664836409.472358,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4998
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11882), with no line terminators
Size:   4998
Md5:    20a4e66f534b80396d40bbc4291b2172
Sha1:   d7c962996f2715d94483be2bf9b644c7185d7ec7
Sha256: 0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
                                        
                                            GET /app/website/js/runtime.5fc7baa50c86dc58bd4c.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"3a9d744d15e5cc153562164d8e9bbb59"
x-amz-request-id: tx00000000000001077c2a5-00633b21a2-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.5fc7baa50c86dc58bd4c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 027a418e4770d727a7db22f1fef32c8a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.473276,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 24725
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (50011)
Size:   24725
Md5:    121447559a6b705a3f2d0d49b4a51959
Sha1:   fb61d388b30d8de94eab33c3720bb27f1bcff4bd
Sha256: c0ca9945ca5aa448ba0e18ef9f9c63feb8c2e19cf3d294433d53a58780551a6d
                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
age: 395688
x-served-by: cache-sjc10077-SJC, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3873
x-timer: S1664836409.477020,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /app/website/js/vue-modules.7951f3068d0f5401b2c2.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 13 Sep 2022 23:09:13 GMT
x-rgw-object-type: Normal
etag: W/"49ff92c44982a89cf5290643882beb23"
x-amz-request-id: tx00000000000000454d76f-0063292783-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.7951f3068d0f5401b2c2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 4e4de176832166ae2fab2801dbf0f52d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1187777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.474137,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 66757
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (25511)
Size:   66757
Md5:    14ad40c1a43ace9b011a851702c93ecb
Sha1:   e9305b6f3a939584274b15a3f1c4fb5bf10645b0
Sha256: 9d4a8b77438e72d188022397e4bdf11b88fe72bc2c102dc0f9b6568b9fcf1c6f
                                        
                                            GET /app/website/js/languages/en.e54b6cb14aac7516be20.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Fri, 30 Sep 2022 21:00:46 GMT
x-rgw-object-type: Normal
etag: W/"ea2a5c73385b07248a96d1755aa2b6cd"
x-amz-request-id: tx00000000000000da27eed-006337594f-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.e54b6cb14aac7516be20.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2decba050def7aff2f3b7c4c1f8291eece9fb981
x-request-id: 9acd0f1b3c06c2e4b4e204200d16e223
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 264594
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836409.474361,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 150540
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   150540
Md5:    5b0bb19f37897a90a87ddbec76deaf3b
Sha1:   c27f4be55b14f57c8760f313217096125174648f
Sha256: cab44a9d0f7c8242927d2254a59825051ef75a4f9d3857960c927ce6dfd311b5
                                        
                                            GET /app/checkout/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 22:08:50 GMT
x-rgw-object-type: Normal
etag: W/"475364c45fded47d2863a618e7f0062e"
x-amz-request-id: tx00000000000000fe11aa2-00633b5deb-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1295
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.622042,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3514
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (16702), with no line terminators
Size:   3514
Md5:    83197a61107108e5f793f314c5711108
Sha1:   66d3b6b2061a4532fb2fa4cdde9cb0a9ecf4d0fb
Sha256: a3977aa2368876d57acc53510be1afd7a26aadef119e291b6d74afe912dc7d07
                                        
                                            GET /app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
last-modified: Thu, 29 Sep 2022 19:39:07 GMT
etag: W/"6335f45b-606"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 355457
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.627692,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 317
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1542), with no line terminators
Size:   317
Md5:    27ee0fccb172f6ed41222a495a62205c
Sha1:   dba3bf87197abf047d477bf26fd8530fa086f194
Sha256: 327fd4f3b36cfc138c5adc30543b90e617a1c1b4eab51f39c9c53f81190e632a
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Av6eqYg/R58ANLjOr1D2cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.40.161.235
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wNE7GUtQI3/wN8WeeD7x6CfSFik=

                                        
                                            GET /app/website/js/41630.acde68362a4f85b8242f.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"e3fdf96b41b353e0c37f1f9918024cf3"
x-amz-request-id: tx00000000000000faa965d-00633b21ae-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/41630.acde68362a4f85b8242f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 26c537d6cf5ccf960051b7d628a90c67
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836410.081560,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4152
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5681)
Size:   4152
Md5:    595a9769e28e42b687d05be6e44ed1b1
Sha1:   ab07b4524f8b5c9efcc3c8eb408c015933f87b94
Sha256: 06d08e2bc2373f5fe3e0138ac069b6f9e644a9456ae7832a5d253e5ef7a75252
                                        
                                            GET /app/website/js/49709.cb80a757b769d7ca4750.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"85314933e3dbc3506fb76dbbc18b9cb1"
x-amz-request-id: tx000000000000002699229-006324b375-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/49709.cb80a757b769d7ca4750.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: a1e9b5b80d2e42cf7319f9e882b9a88c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1116905
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.085509,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4057
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9463)
Size:   4057
Md5:    414d8373f1c7696806c33ab7299bf4dd
Sha1:   cd160cf499b27ba121c837c3202b8047ad83fb56
Sha256: 2e291b8826d1f4b2c17be73b5508acc3c8e23de8f83728fe90f3158d5445cc83
                                        
                                            GET /app/website/js/88857.6e34b40bfa10dd648375.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"9463f4be6c8d7a23f1a7f6a702ffedac"
x-amz-request-id: tx0000000000000026990a6-006324b373-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/88857.6e34b40bfa10dd648375.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: b9fa93b1b68f4f1d898db568f1582457
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 585056
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.086527,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3472
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4209)
Size:   3472
Md5:    d0c3059bddab007ccee07c57336bba88
Sha1:   e0fc4e1f8089d3bae817d8ec888c151f95fd1402
Sha256: f3db4c4c1c1698425a2e8a9f9aa971ef14ce88681219b227626a9c3dc1790c7e
                                        
                                            GET /app/website/css/home-page.330abfc8608ec69de0f5.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"caab02dd387044f4022e40ee2c3b28f9"
x-amz-request-id: tx00000000000000a8b1be9-0062d074c4-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 995f38829174b97993a0ed18090ad16d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1807113
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.087760,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 395
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (857), with no line terminators
Size:   395
Md5:    8d7fcccab55897af77b9e87a64f57b20
Sha1:   8fabb83941907077788025f05cb325c0c7340794
Sha256: ca291141827c7605d3815f5bd0b2fab261f6f815d9b5661dfeae7153d40bc346
                                        
                                            GET /app/website/js/home-page.44e252f4ea49e6c88e3b.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Wed, 21 Sep 2022 16:40:02 GMT
x-rgw-object-type: Normal
etag: W/"a9917ab68ed49d660f45db725ec853af"
x-amz-request-id: tx000000000000006aa3142-00632b3ebb-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.44e252f4ea49e6c88e3b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: 5f8e79841a71b39728ed4464187af8f4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1057854
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.088316,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6026
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19908)
Size:   6026
Md5:    f201fa985a8ebdce48c806e4f758582a
Sha1:   e03ed9757e25fd1f7649d2402623a8ba1f5b400b
Sha256: 9453697232ae9df8797a4aec6e547c62c95866ca5597a2feeefc2493eb8c48ab
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 22:33:30 GMT
Last-Modified: Mon, 03 Oct 2022 21:34:35 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NEuE5wz0bk0nEGkmaqHZ9VW4j_1IwzuSrgnQZETgWQMl_7E4vBD2DQ==
Age: 3535

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 22:33:30 GMT
Last-Modified: Mon, 03 Oct 2022 21:58:19 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qm0GLzdyUuR1L_jnRHajrZo3jSx3g2hySVeg2jhJDEF3-ZLJkxVt4w==
Age: 2111

                                        
                                            GET /uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400 HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 3350
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "pUVJox2pbF5IewxCJptLe0qIUOwSEzRRyBLBDBPyhlw"
Fastly-Io-Info: ifsz=4132 idim=224x225 ifmt=png ofsz=3350 odim=224x225 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx0000000000000101f6f8f-00633a4912-c695612-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z458d
X-Storage-Object: 458d0a97c28699841111023901d9badf01a35ebd529bcd2c02871ae61e9a36f8
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 1318
X-Served-By: cache-sjc10038-SJC, cache-pao17470-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1664836410.240579,VS0,VE1
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn50.sf2p.intern.weebly.net


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3350
Md5:    4a9463d86ebe0fc07b2c1d61117e6af2
Sha1:   ef0130f409c753d77b6f31878ae8537671aee48a
Sha256: 9288de1772ae84636ca3c486fe2a17fb809a57e52c045be5838500a00e207181

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         44.235.202.207
HTTP/2 200 OK
                                        
date: Mon, 03 Oct 2022 22:33:30 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2

                                        
                                            POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1 
Host: sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Content-Type: text/plain;charset=UTF-8
Origin: https://btconnect-109798.square.site
Content-Length: 417
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.188.42.15
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://btconnect-109798.square.site
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1994
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         44.235.202.207
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Mon, 03 Oct 2022 22:33:30 GMT
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 03 Oct 2023 22:33:30 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Content-Length: 78
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Mon, 03 Oct 2022 22:33:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn115.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 894
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (894), with no line terminators
Size:   894
Md5:    425945c21c361516d57dcfa68f2adfa0
Sha1:   fd1e931b775c396cd3f02d5bc13600e305c5a93d
Sha256: e49bdcc237529abb3baee5c2ea30e106e2a9b05b78fcbc4542a271e435d38db8

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

                                        
                                            GET /static/icons/payment-methods/mastercard.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001ac6ae7-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: d22fd6d0ef4446e88e5dd5e4e652697e


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Size:   1657
Md5:    1448577966d9c16095880130e876db7a
Sha1:   ecfaef0be795af04cab2f95d7457721a35cf1742
Sha256: 0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4151
x-amzn-requestid: f709a11e-cbea-4965-8502-94ddbd8768bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvSF3YIAMFdow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-29bfa31d51e8f60b38136dba;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iHjSrLdzntzVnJ-qaRf834nLglcKXY1cTgLY5VcCyKtp0lwN2gGnnw==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 2950
etag: "c20f1fac9020eb4bd6c84583f73872979639b991"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4151
Md5:    24a4a122273ef9f772852031eb13114a
Sha1:   c20f1fac9020eb4bd6c84583f73872979639b991
Sha256: 8e1ffbed5f156637ed2f22e81d03f6d85eff0c28237c1639ea5f977e92ee7b70
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7df28993-57e6-4e7f-9751-93778578bd1e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10595
x-amzn-requestid: 7cc6c91c-4dfc-4c17-b27c-5c0eec4a390a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqdOHTzoAMFYdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5787-11525116257b72eb382ecefa;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qglxUK18M0WVvuSzN-pkwoIagT-hMmp_77qKAVaGq-3vJ4gwwsRzdA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:14:26 GMT
age: 1144
etag: "40e4337611c74e26efbc53633ba1a9ac04d9ae81"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10595
Md5:    6258b8768ba4c3edcc049c494dac733a
Sha1:   40e4337611c74e26efbc53633ba1a9ac04d9ae81
Sha256: b170aaabbd17b712ed861f5e1d13ad2ff3604b47e9ec833077caeb1199f44d08
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TVz3oiy-Z2r9lGFDgsnGNxotvvAPeOaa7LMzqs432QjZpZo-PNt1-g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 64239
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2761
x-amzn-requestid: 00090151-da40-48e8-98f0-a0c579fe6d1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI_EgdIAMFc0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556c-06ceb1750213c44130848bf2;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tnLSKunYCXPQiG357F3pxokcn8BJDjBxvx8MmQo2XwY7_eCzD7ZlIw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:31 GMT
age: 2939
etag: "0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2761
Md5:    fb7d0bdcd7cf60e39ee64d92f5694384
Sha1:   0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f
Sha256: a6dd1fade6b47e539dd42ed07d2cf58179db10fe946809f201889a1f9c4ef282
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d0984d7-fe4f-4f96-9f0f-17e0197a5cb6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5857
x-amzn-requestid: 51f3a938-30f6-418e-970b-439bdfbb7c2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHIAIAMF6PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-6d97d5ff3c3589ee1e900a3b;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OModa8qHXEimXsJhr1DiYifYbFLgI-yMvAaKZA2SsRyU1N5CWwoVOg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:16:34 GMT
age: 1029
etag: "1d90e98d3666fc8618130eac15972d3a08addf16"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5857
Md5:    78caa2bb8e856110416bc85ed2420d20
Sha1:   1d90e98d3666fc8618130eac15972d3a08addf16
Sha256: 5175905bdbcd0a325ff666148a77503f14d1922d826ad14a9c3d09846d77dff5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 2950
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4858
Md5:    6779181f9c06975f2a662da743893939
Sha1:   585e7146fd24cdc2496b05baafea04091dc541e2
Sha256: 8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
                                        
                                            GET /app/website/cms/api/v1/users/139428721/customers/coordinates HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:30 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D; expires=Mon, 17-Oct-2022 22:33:30 GMT; Max-Age=1209600; path=/ XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; expires=Mon, 17-Oct-2022 22:33:30 GMT; Max-Age=1209600; path=/
X-Host: blu75.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: a8dc5cef060d7224d970e33508bbc448
Content-Encoding: gzip


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   70
Md5:    9752b06c768724a72741cf9388713596
Sha1:   3c05993fc47e53d1edaa9c03779565a7753f3a61
Sha256: 1d97b677c782c9ae57c8b4dcb6afd88a8068ea3cd133a00cf1050dfe0b4d835c

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /static/icons/payment-methods/applepay.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001a5c248-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: a357db0442cca67c349a33568ef581f0


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Size:   2986
Md5:    c9f0fd2c3c94b10595455b840e220672
Sha1:   7734e007c6a4dd650d38be5b29c7335cf9cbfb97
Sha256: a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /static/icons/payment-methods/visa.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx0000000000000345db325-00631274b0-bfe36ba-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn41.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9dcd196fdaf0d2d4e853a771663c571b


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Size:   2247
Md5:    98e2d557ac9311fbf6c47dcb9cb2c730
Sha1:   e58712545669ba118a42f2e47fcaaabd095cdc6c
Sha256: 0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /static/icons/payment-methods/googlepay.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001af98ca-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu133.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 16819ddfa74ffa242d998366be06b809


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Size:   3115
Md5:    2e6b26f9d61dd22468981356313ca58c
Sha1:   df83a373e46337f409c59947b4ae5f9abe1d896a
Sha256: 85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Content-Length: 83
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Mon, 03 Oct 2022 22:33:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn135.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   201
Md5:    bbf985fd86ef8add09a38860a98def2f
Sha1:   2804fa968da1e1b8be4b6f150438e45f4150d3c0
Sha256: 236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001ae675d-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9404ee3d774d456851a4e591c3a23cdb


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Size:   1206
Md5:    2d510915ad1e47e7f6fa0a9ca6dfe7d2
Sha1:   a94981dcae88d70869bce16df350fbc0fbc0c138
Sha256: 52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /static/icons/payment-methods/discover.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001ac6a0f-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu75.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 76d0e74dd2c541acdeb8dbc4a81deff3


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Size:   3087
Md5:    9e274d45e1f0b4185bb742d876cee3f5
Sha1:   67405429005f54a1cfb1a27e27491d89814f9ede
Sha256: a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /static/icons/payment-methods/jcb.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001af9a36-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: ac300f5589af74e72c592c1d396e39e7


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Size:   3876
Md5:    32a219b916e0f1667aa650f7f8536a7b
Sha1:   a464d7ae31f4996c69c95a11fb791b01e55ceba8
Sha256: 4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /static/icons/payment-methods/cashapp.svg HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000db9882a-00629614f5-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn41.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: af229e40d0aca47c288ca4c157f2cdc6


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Size:   1394
Md5:    4d9798d0983422b1931dbfb934e04144
Sha1:   b70cb2e3822c77177ba56a351e309d5394263105
Sha256: 880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /square.ico HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:31 GMT
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001ac6ae5-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 7c44c9b25dc4cd55dc3f3d4d6a9a17fd


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   6518
Md5:    d810985ef4dc1c0bd5811e36d13c8ca3
Sha1:   2b45bb77c68c937af6a2d9854dc82301526473aa
Sha256: 770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /site-icon?device=ios&size=180 HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:31 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/ XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/ PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 62a1861b71fc90276e3ae25f6656100e


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Size:   1299
Md5:    cf3a9fc9da142c7093ed2cd642a545db
Sha1:   630165f76a5e26e7bfb9db0326e8ac62ce69345e
Sha256: 14d2c0d565f8995ac59174d41f4b469e700dc21dfdb1b72cbca43a5c1bdf0503
                                        
                                            GET /app/website/static/fonts/Domine/Domine.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: W/"f859875369df59480c1798e4b7f47bac"
x-amz-request-id: tx00000000000000b94e242-006332c205-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 0d075c7652c336288aad5158c9b3b49a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 494373
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836411.457351,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   146
Md5:    63e426ca2fc1f525e07549acbdb03c86
Sha1:   de204bf76765003228040392b785be8a4635f71e
Sha256: 7cd7ad8d4405b131406a53408c0ed82f5d0f5b8b0e715f9cff32321ecb11b81f
                                        
                                            GET /app/website/static/fonts/Open%20Sans/Open%20Sans.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: W/"5a911d826579cde6887d45195f330549"
x-amz-request-id: tx00000000000003d2c0ff7-00631fdb2b-c03521c-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 19d42d5ea27796182ce421f67807d86b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1804304
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836411.458832,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 184
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   184
Md5:    45eb1d539e7e3713ba21d3b762495241
Sha1:   a3ab579ddcbf6844d185c3a2b7e21b90e03fc8f0
Sha256: fd87e35b1c208ed7ec8a1ff7b7a992113993b930cbffb505211571bd61897221
                                        
                                            GET /app/website/js/66828.7a1f2b6b3048c8a9abed.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"cfc68333314856ff257312138eb8e7d0"
x-amz-request-id: tx00000000000000bee0010-0063331d49-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66828.7a1f2b6b3048c8a9abed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 8106d52edec8e55a0681b3b724dce240
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542120
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.484112,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15920)
Size:   6994
Md5:    aeae4740ce9ca44afb45d241a6d7cf02
Sha1:   63c70a7ccc0218c61cf82048d8d1c9c6803ce1c0
Sha256: 73486eccc5e108672e81c0bd003e335f5df16d3e054ae3926cb11243094ebb69
                                        
                                            GET /app/website/js/9458.dfb54a3d2009837dfc1c.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"74b08c80795cf6c4c2cd8979b88a585c"
x-amz-request-id: tx000000000000010617a82-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9458.dfb54a3d2009837dfc1c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 68cbcf8561fe2c55fbd959bb2eae33d9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.488432,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 10254
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17020)
Size:   10254
Md5:    6d29cec60d1053f23cf97c994eb73a45
Sha1:   a29a50007be195639b28438e3e8fac66deaf7fb4
Sha256: 88645a58ed4ff84af06d664587985423e46e68a335ac68dd42db65fe011417d7
                                        
                                            GET /app/website/css/navigation-mobile.b78212d8d37b56895f14.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"8857de04e5bf7fff2d6541c8abb6106d"
x-amz-request-id: tx00000000000000bd3e41c-0063331d56-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 5a7c64583387578e4dd9db8ead97b0e7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2403
x-timer: S1664836411.488996,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 2999
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (10021), with no line terminators
Size:   2999
Md5:    0592b530cbf990977268f19f0ce0c027
Sha1:   e8a33134a639a676dda386f796b21bebd8a90511
Sha256: 4e0b9f188663c9d24bc3c665366dba35e2f46337c97ffb160de58ee765664292
                                        
                                            GET /app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"c42f7160d4813844aa9c3d1d52fe51f1"
x-amz-request-id: tx00000000000000f7bbdfc-00633b019c-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.4492aebe016a3cf84ad3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: cd8d406ab1d4b3d5e4b28614329a36eb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.489703,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18200
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30694)
Size:   18200
Md5:    324d82707a7157490d4e1a23ab3d0915
Sha1:   a2b2be87328fa1894aefeb42593106a7aad321db
Sha256: f09187714bc26344c2f06bd8896fb0a4c3779d4fbf0486035381c837debf2fb3
                                        
                                            GET /app/website/js/89814.7c33af088cddc4109e43.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"06d79aaa6a4d188323f29ce9534ab179"
x-amz-request-id: tx00000000000000bf2b936-0063331d4c-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.7c33af088cddc4109e43.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 46f4336f14f055330c9ccccabefdc994
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.498231,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4338
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14043)
Size:   4338
Md5:    178758f917347be3cc16039638a3a080
Sha1:   1ebcaccefe2a24d321638fde0988ebba235e18df
Sha256: e0fb3cf963ea543c17b0ea8d0ead49e0c389774758d0a1036098dfe0a22b4e44
                                        
                                            GET /app/website/js/63078.d8b67652f8a80e7ebc30.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"9381a58af2c4d899bf85a5d6dabfff07"
x-amz-request-id: tx00000000000000f90a704-00633b019a-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63078.d8b67652f8a80e7ebc30.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 583d0826dc59f81dced7357aba1f7027
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.499677,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16366)
Size:   6994
Md5:    2cac664b5fcd18937498e65fced2cfb0
Sha1:   86a9c74dc43e77fe2e907dec4bcadd06e12e1238
Sha256: 61af8efb689db443c0cf4beec37d6ed8005fe8a15d5689922bf3f8a2c5282161
                                        
                                            GET /app/website/js/3464.0e011b7da28b4dcc50f9.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"d1fff5f103d924ecf44e37f414dd7644"
x-amz-request-id: tx000000000000010617a85-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/3464.0e011b7da28b4dcc50f9.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: adf510b1c3dca3e607c242fdb0258334
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.500476,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 8310
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22834)
Size:   8310
Md5:    59216768b8576418d667cecaa1b57c9e
Sha1:   7e299a69e55515b1e89f7f0e08d14917c360dd8f
Sha256: 1f1ad83672f2819c2b76fb5d8a02c0b483a77a1e781760064c92c40f9993fa0d
                                        
                                            GET /app/website/css/69151.1d587d349a2e30b7c539.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"38535bbed5cc9591643d0bfd54dff7cd"
x-amz-request-id: tx000000000000010818a10-00633b0186-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 4b55aa9ca5ca777e0f48a2815c7a79b5
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.502651,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5080
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20997), with no line terminators
Size:   5080
Md5:    cb23449d0e7a6f85177e66f9e4cb8b97
Sha1:   e6698cb203cbcc6490b181c9324ebc0d9947133b
Sha256: 2dd236f452096dd4066d3c457d91fa9d9304065bd99ef42eb1bd39071655f3cd
                                        
                                            GET /app/website/js/69151.43baa48b8e2696afbaee.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"cc04044592d2e34cc614fa22b6ac2f54"
x-amz-request-id: tx00000000000000f7bb41c-00633b018f-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/69151.43baa48b8e2696afbaee.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8872d53f1a9426ac16d95767d7b23df3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.506845,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9796
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20536)
Size:   9796
Md5:    e5f819fd2471f0d39f40a424b6e738c3
Sha1:   025955df8e6f7816bdec557210b0b6e2569a56a9
Sha256: 80886528d1a068690cab927c342713be1cf493123535c3560909ffd0c85dd879
                                        
                                            GET /app/website/js/28134.77d6819aef6675b6d037.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"7b6032abc58def0599a6d34df6d728be"
x-amz-request-id: tx00000000000000cb85c8d-006335dc37-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28134.77d6819aef6675b6d037.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 410c1612457aa0c225a78004c5722c86
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1664836412.515736,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5953
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16809)
Size:   5953
Md5:    84c5d286b0f8559fa7dfece05a6d470f
Sha1:   70c6ad1f4fdbe1a000a2456e8c7f1447714b6f79
Sha256: d14e896d3d64286851790eb7627c34757fdd5238c5fe28d4d6bd35176d9551bf
                                        
                                            GET /app/website/js/cart-1.35b50145c690757d9bfc.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"c0371b35c318b32cea310567eef29314"
x-amz-request-id: tx0000000000000107b8512-00633b21b3-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.35b50145c690757d9bfc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ff2932cc2546c2605748de185c7d37d7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 16776
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.519277,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32310
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9219)
Size:   32310
Md5:    c7818639c63c41b32e09b966e527cce7
Sha1:   9b3bb279647bcd226e42d410346b05c368915390
Sha256: 31ee56ec4407e2241f8ca4c704629dd3329a62906005afa9ca7620657064b885
                                        
                                            GET /app/website/js/28962.d18168a4fef01bd4d15d.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"370799bbaeff3ba460557bb19cbe82fd"
x-amz-request-id: tx00000000000000bd3d7a9-0063331d48-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28962.d18168a4fef01bd4d15d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 82213c86f96f032b754b4908844d5e55
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.533754,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4977
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13912)
Size:   4977
Md5:    493704f053d7437bdc89df0882cf81ed
Sha1:   084f2f1d43b5210e42f32e079008988d4fe8d2a4
Sha256: a6cad1c76c4e7223ad170384bcd12a4bf47fc58544aed550287c67d7169c2255
                                        
                                            GET /app/website/js/31083.4f8bf72e65310781cdc3.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"779d3ba5eba2e36c5e1e5214df356c5a"
x-amz-request-id: tx0000000000000108194d0-00633b0193-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/31083.4f8bf72e65310781cdc3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 3c476c4d944b58a3a179c7150d72d74a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.569120,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5225
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12428)
Size:   5225
Md5:    c2c1ee3bb6fdfd4cd2e8dd94691ed5fa
Sha1:   8cba707131ee4535b7587d21dab4a372ff3d315f
Sha256: e46b600635d77073913fe13797f1ebbd3e769cf1021833c503d1acaea6686cfc
                                        
                                            GET /app/website/css/62651.637819b958113e0a7acc.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"224ec22bc5a895e36f855a2be31ecc0d"
x-amz-request-id: tx00000000000000bd3d858-0063331d49-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 24739b76cac0c2bc67311f83cc8814b3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.569230,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4794
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (18914), with no line terminators
Size:   4794
Md5:    9c48deacca63997a018adc4d9057af6c
Sha1:   9a7a3c896c94810be3967b546e1c28deb945ebc3
Sha256: 32d2e1cbe1c50b9a78bf0d1c45d52b2354f43f2c60f7b4f0f6896e60467b0ad0
                                        
                                            GET /app/website/js/62651.3b34ab6bb4023a44208c.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"ae704f34826303439556045a14365f92"
x-amz-request-id: tx0000000000000106180e5-00633b018b-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/62651.3b34ab6bb4023a44208c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: e0208ad9de0de3e9fe6f80d5b5bd11ff
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.570385,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9367
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24677)
Size:   9367
Md5:    251da6b85be6e25a29fac83d142e17a1
Sha1:   91db8c481d50f2515091ec4273f11bac20c91846
Sha256: 325457af8d2eafe9bc1e9e4ed949860ea388c180e687a5871a8ee79cd6ff0a64
                                        
                                            GET /app/website/js/33182.694277c0f3aea942d6b4.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"fc698b0eddcf2e0d002759d3f7c1250a"
x-amz-request-id: tx00000000000003dbad805-0063210df8-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/33182.694277c0f3aea942d6b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: dd6054965014ba80d9fd7e89677c34d0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1197627
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.570478,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3906
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10185)
Size:   3906
Md5:    ba2aca810f7b8482853e7d5d40b62776
Sha1:   a4b81ae91f35d9cff43145e40be912078f5d2eaf
Sha256: cc34afd70a0bb32291a2be71f92beb22d281961649772b806d997511ab51a0da
                                        
                                            GET /app/website/js/19384.efee8b71a6a648cb9204.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 19 Sep 2022 18:33:20 GMT
x-rgw-object-type: Normal
etag: W/"aa1ab652fd9758b5b518b2a9fa053202"
x-amz-request-id: tx00000000000000c0e601f-0063336316-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/19384.efee8b71a6a648cb9204.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: fc502d8e34c167131b5c714a8eed0a1e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 524325
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.511280,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5005
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22743)
Size:   12733
Md5:    e1a4d949b3ae5666ab4ff4eea75bec1e
Sha1:   16aea1549ce0a775a25c3427a39c000f308cb69b
Sha256: 7a751fa9bd7f77c6107ae846a49ed1ec7326de269c910a483ff88c7d0469499d
                                        
                                            GET /app/website/css/header-4.1541832b8fd135e7fdac.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 20:52:07 GMT
x-rgw-object-type: Normal
etag: W/"b3697b8d5ccf39c18678e88f0e95670f"
x-amz-request-id: tx00000000000000b2e563e-00633362e7-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 9e93f5b4898e059b6938a50a5d13f035
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 523992
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.580800,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5644
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22082), with no line terminators
Size:   5644
Md5:    f44a367ff6f9cef7503e149284dda04e
Sha1:   64eb1ace475f0233b433fbdeaa899e342a1598f7
Sha256: c12b02a74aaa8eb5569f06c3ab19a94901ce124edf917595d0926e327193e1af
                                        
                                            GET /app/website/js/header-4.44530ebe5d0024415615.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"d7457d729041075183ddf5da7948ee8c"
x-amz-request-id: tx000000000000010618927-00633b0195-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-4.44530ebe5d0024415615.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8cd1b1c3afd81b74199cf28fd2b0cc5b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24634
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.580907,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 28740
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32737)
Size:   28740
Md5:    02e82ade0a46bb828c8e21c1aa4388ec
Sha1:   049fe9154fc44fa0fd26325c3d3a0ef2404e7564
Sha256: 3af9294f31163424c81cafd5205a8eaac32051fb17e2d44f137f7a996030117f
                                        
                                            GET /app/store/api/v23/editor/users/139428721/sites/790344227800140344/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1 
Host: cdn5.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
cache-control: no-cache, private
etag: W/"a50977b7e57c7fd2cd59323140273d34"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: 46b8cab6eb58d84dbb2c061204cb322e69087e20
x-request-id: 49cb5ae5d52776b848e4faab32681b18
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 03 Oct 2022 22:33:31 GMT
x-served-by: cache-pao17466-PAO, cache-bma1678-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664836411.923133,VS0,VE390
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1466
Md5:    669b500fae061d89b31600f7c3401a52
Sha1:   00122679f5cf8c1e10343201432cc45bcbdae574
Sha256: 1db0a04d4b476ad42ad5684047950d48a40d21ba5050a58c4a33a548086c5f3e
                                        
                                            GET /app/website/js/26267.78a7b8e043fd38ce5bed.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"da9c41584ada728a23d91b0505f40439"
x-amz-request-id: tx00000000000003e0b9c83-0063210df5-c03521c-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26267.78a7b8e043fd38ce5bed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: f26bc6b476269279cb2711ab775bd8cd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1188335
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.600344,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3577
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8710)
Size:   3577
Md5:    427c7fe2b3d549712100f6820b08efbd
Sha1:   c229680202f32a5d973fd8f91f4be59b9c050e28
Sha256: d9ad555d0cc050b5522d23427dbb81b4be0bb3182e979e53359916e144f5d901
                                        
                                            GET /app/website/js/91272.1c5d597f56a343a39169.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca7b2a99099a151b51b4c15d1d2bc11"
x-amz-request-id: tx00000000000000bd5f4c2-0063331d4c-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/91272.1c5d597f56a343a39169.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bcc8579caa22acb61c992573b277d224589c7db6
x-request-id: dc38a1708fb97f3ab8290ddcf3befc5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627178,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12604
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18330)
Size:   12604
Md5:    f2397a8edc8314d2ab89af5bef811d57
Sha1:   b88f044f6f2bbc9cdbdbcd6ac2a6829f0fc99f29
Sha256: bf36d69af07442ee1664ede9c7069461ea97a92e299fc1ba6284c4b332e58ca0
                                        
                                            GET /app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"8b4ceee22aa43054751ec463b5144296"
x-amz-request-id: tx00000000000001077d03f-00633b21b3-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: d6ae832b1c28c118f59abbbc4abc5b2b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 16776
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.516944,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5220
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6231)
Size:   6081
Md5:    720b76d114220c6921ffd7271317bf07
Sha1:   5d9294103532ae88683660cc0a01f95197e848ba
Sha256: dc9e9ffec23369ebe881ca72c78d0f8cd52674fd37bbde690705e8213a04574e
                                        
                                            GET /app/website/css/contact-us-1.07fc26c6091d2855dfca.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"bb5294ffcb780c3463e560b110320d49"
x-amz-request-id: tx00000000000000bd3ed68-0063331d61-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: f693fd640aa2b192200fbdcccd6f183c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 515970
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.627692,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3992
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (16271), with no line terminators
Size:   3992
Md5:    509ea9783cd47294e65eb3255b195916
Sha1:   5d7a757d060439a226cf3756de5808109a49d865
Sha256: bc65e7884a9ae3d1cbe3a9a0f6c3cdef710fea487611f4753767df8142e21ec5
                                        
                                            GET /app/website/js/584.caaf0ad96373138bf188.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"1f1a99ca1c046e3862230cac549e8225"
x-amz-request-id: tx00000000000000d87dd9c-006335dc24-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/584.caaf0ad96373138bf188.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 8e046d250cae6802ae7fc9a80c3a3dea
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627334,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 16069
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22595)
Size:   16069
Md5:    5a6cc2d02a3220f2d0c07ce8afe00735
Sha1:   a1f15e6a23aa71b8f0a554a7408373942c314238
Sha256: de865be6736e5389d52ca365e09dbd414fdceb6a753c8b5dec34a650b8ff2a5a
                                        
                                            GET /app/website/js/contact-us-1.a714c12e8ec682e40ee6.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 13 Sep 2022 23:09:08 GMT
x-rgw-object-type: Normal
etag: W/"b222db33ae5504b202e445c37b055cc6"
x-amz-request-id: tx00000000000003d9c24dc-0063210e0b-bfe27ea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/contact-us-1.a714c12e8ec682e40ee6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: 4b2b6539c9930ad3d54f9db2f0441005
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 597355
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.627991,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 809
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1661)
Size:   809
Md5:    53650ad32ed3e3c578a1b630189dd1e9
Sha1:   775141e2e960b814e0074e0d5b7031e521c22111
Sha256: 11994ae02e77098450d3d08168da07b3b4c36c79912fe452b6a55a84487e9069
                                        
                                            GET /app/website/css/66670.b694d05e69f75f469d70.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"b3b4a5077e6334122ff50105eec7420c"
x-amz-request-id: tx00000000000000f9ed065-0063397800-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 81e76d581d20b11b05218010697e576d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24649
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627972,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6366
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (25632), with no line terminators
Size:   6366
Md5:    b99bc0745e6201b918c78b0bf8e9de7b
Sha1:   e9fb8a3d15b933ae2f822db2e66fcc1712f7e2cc
Sha256: 729fcdb927673a30d1f50c66cae501b20f88be96cdecdd12784bfb0fb208bd05
                                        
                                            GET /app/website/js/66670.a7a5bec786b65c6f06c6.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"35476ff365f33e157ca81acd30b616b4"
x-amz-request-id: tx00000000000000f9098a6-00633b0189-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66670.a7a5bec786b65c6f06c6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 67863989620f35dba9e32f83e58603ac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.628553,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 13819
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16522)
Size:   13819
Md5:    83ee6769d19ebb77088fae2e871c6183
Sha1:   5f690d95fd04d9cc3b9216fa0b21637a4837479f
Sha256: 12113db4803a5fb421bb0dc3941a52159ad74ceb069f6fd050aa2e0c327e1921
                                        
                                            GET /app/website/js/footer-5.6104f09d4a17484472e0.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Tue, 13 Sep 2022 23:09:09 GMT
x-rgw-object-type: Normal
etag: W/"0b2c58a2f8166ec9ada9989daead7031"
x-amz-request-id: tx00000000000003dbaefab-0063210e18-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-5.6104f09d4a17484472e0.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 88066b6a9d228a390e1a06f9c114400a7771a2ab
x-request-id: 817152804a2a546bb6760a77555342f3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1206887
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.628724,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1340
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4258)
Size:   1340
Md5:    b2719113de933b450b5305081fb91709
Sha1:   57cf846683ceb2373f2c43c28e913412ffb7d1cb
Sha256: 51f49ae77134cc71220ebcbad329d4641f290190fe90240ddc728a662fabe417
                                        
                                            GET /app/website/css/footer-5.a31aac545d842d0f1bd5.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Thu, 09 Dec 2021 21:01:03 GMT
x-rgw-object-type: Normal
etag: W/"cdfb816a67e7f6b5cc93bc559be24d42"
x-amz-request-id: tx000000000000036662749-0063167477-c033918-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dcad98fff835883eb4474ff15b5f35d35527cbfd
x-request-id: 6981b2767b64bf239db20d28ef9f785f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 2401716
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.628724,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 288
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (848), with no line terminators
Size:   288
Md5:    20bee51534e27efb91e4d52e9146e6df
Sha1:   d1fea0b3bc43963595aaf87af0a2baf1b97e8feb
Sha256: e78244b5f41fc238340d9010caa9cc584f3cdf156ffffdda5daedec9c4a4f3ba
                                        
                                            GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2 HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "603c99275486a11982874425a0bc0dd1"
x-amz-request-id: tx000000000000036fbba15-00631696b1-bfe36ba-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dcad98fff835883eb4474ff15b5f35d35527cbfd
x-request-id: e0046c3270b2b7a07c0c59c70a7e5d1e
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 2411658
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.704250,VS0,VE1
access-control-allow-origin: *
content-length: 16756
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16756, version 1.0\012- data
Size:   16756
Md5:    603c99275486a11982874425a0bc0dd1
Sha1:   ffeb62d105d2893d323574407b459fbae8cc90a6
Sha256: 4ffc35ac4d5e3f1546a4c1a879f425f090ff3336e0fce31a39ae4973b5e8c127
                                        
                                            GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2 HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
last-modified: Mon, 22 Aug 2022 16:42:23 GMT
x-rgw-object-type: Normal
etag: "e43b535855a4ae53bd5b07a6eeb3bf67"
x-amz-request-id: tx00000000000002a2d83e3-006303bc41-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 1dea62ed7a4df6ba0ec605494d4a9bf4
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1804303
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.697355,VS0,VE15
access-control-allow-origin: *
content-length: 16740
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size:   16740
Md5:    e43b535855a4ae53bd5b07a6eeb3bf67
Sha1:   6507312d9491156036316484bf8dc41e8b52ddd9
Sha256: b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
                                        
                                            GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
server: nginx
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000000000000505f8f1-006328ebc1-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: fd6152d8aba2d68cd31403255b441574c0c6e98e
x-request-id: 8da80ad841ea012d671e5636c99cbad7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 959952
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664836412.802292,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 351
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (626), with no line terminators
Size:   351
Md5:    ee20922f55875dd45d7acae546cadedc
Sha1:   491672dcd84153d29c9e2346e0f78d1fef5e729d
Sha256: 6594eb11c5c147a510920933dbd3177b6678ce61f0bdc38a6377761534792336
                                        
                                            GET /app/website/js/free-footer.43afe0e4c322617e1e40.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Thu, 29 Sep 2022 17:54:20 GMT
x-rgw-object-type: Normal
etag: W/"3f0eaeb3f61e794c8e09f13bd43ceef4"
x-amz-request-id: tx00000000000000d87e37c-006335dc2b-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.43afe0e4c322617e1e40.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 2400a928e6f855fe31b98213a686ef01
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664836412.808397,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3204
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7387)
Size:   3204
Md5:    9ab2c860f287370aaaf14d00cf613667
Sha1:   4f5dcc7b7f3895ad4791d7d7620be632448037b4
Sha256: 204833cf49580a9bc07b4ebeb10bdcffab5f18618e11510f8c9429829e5b40c7
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1892
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         44.235.202.207
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Mon, 03 Oct 2022 22:33:31 GMT
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 03 Oct 2023 22:33:31 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0=
Content-Length: 89
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Mon, 03 Oct 2022 22:33:31 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu95.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   182
Md5:    6f6b6b81dd3714cd388808342e960a10
Sha1:   f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
Sha256: 2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0=
Content-Length: 77
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Mon, 03 Oct 2022 22:33:31 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu44.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   79
Md5:    26e70d9925604cbe0c7e866fc54d87f4
Sha1:   ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
Sha256: c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /app/website/square.ico HTTP/1.1 
Host: btconnect-109798.square.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.39
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Mon, 03 Oct 2022 22:33:32 GMT
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001af9993-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn135.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9334223d0819ab56d71eee3fda8c2922


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   6518
Md5:    d810985ef4dc1c0bd5811e36d13c8ca3
Sha1:   2b45bb77c68c937af6a2d9854dc82301526473aa
Sha256: 770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Alerts:
  Blocklists:
    - openphish: BT Group plc
    - fortinet: Phishing
                                        
                                            GET /app/website/js/site.81f9834bfdb433dc7cec.js HTTP/1.1 
Host: cdn3.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"251f3ea64bbc29712eace55eb0b59e29"
x-amz-request-id: tx00000000000001077cd87-00633b21b0-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.81f9834bfdb433dc7cec.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: fbb9cdd61ea4d2df39d4d865e14d01c9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836409.476394,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 572936
X-Firefox-Spdy: h2


--- Additional Info ---