firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 21:46:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ykr_bC5VU5jeobX4VhTjQkzxfIBPCbHOE1voyegpQMpO7yGD12Z81Q==
Age: 2789
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10920
Expires: Tue, 04 Oct 2022 01:35:28 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b8769801e8712cb7b401b5752da2c2
30d14bf20b20507a4fda3d7dbee9fbba7327139a
69d097718cac37cc6b77d417711c4356557f2b47c78026303bfe5f985b94a5a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69D097718CAC37CC6B77D417711C4356557F2B47C78026303BFE5F985B94A5A5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3856
Expires: Mon, 03 Oct 2022 23:37:44 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 12yn3ZG5sihTHtUOoRRIwmhMlmg//iX22XPVsk+ffcB01JyYOPHZbo5KrjAO7Jv5cJ5L0BBbiLw=
x-amz-request-id: BN5K6CT762XFVQ5W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 03 Oct 2022 21:50:48 GMT
age: 2560
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 22:33:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash cb4e313b3e96c9b8f3d6154ed341e85b
20a0f3adcdc859c61e858f9497de0f9959536b33
7b362fac9beee74e53716206a6349049ac6729a51bf4c6a7757c6ac48dbf8760
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "7B362FAC9BEEE74E53716206A6349049AC6729A51BF4C6A7757C6AC48DBF8760"
Last-Modified: Mon, 03 Oct 2022 10:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3533
Expires: Mon, 03 Oct 2022 23:32:21 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 03 Oct 2022 22:29:33 GMT
Expires: Mon, 03 Oct 2022 23:08:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9In5jpHhBI6raDmDHz6Pm0gEY8zsbwEYtmhyfp-5AjszEJA3PeYkjw==
Age: 236
btconnect-109798.square.site/
199.34.228.39200 OK 8.9 kB URL HTTP/1.1 btconnect-109798.square.site/
IP 199.34.228.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18390)
Hash 0e8b1be4b6a1b0a431889f27e558d2ed
77684deac0de564f325e119b58c6db22d1daa3ae
b1205f7cf2a92d6df9ace7a2dc8b45cd981c3754bbc9529ed00b71b7c401669a
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET / HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.1.1654494730.1654494728.31da809a-5d97-4f1c-b3dc-23df3825d286; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:29 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn127.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 928148694dd323c1645a7dd07de4002f
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3631
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 22:33:29 GMT
Last-Modified: Mon, 03 Oct 2022 21:32:58 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (64282), with no line terminators
Hash 4204e7970c3000f76d8b4551eb84f772
ab466cb335d09874f07ef69cc41cfd1517df9df3
c7d3724efd7ee58c4e5a3a33bd68847f6a03df2cb84c1220d7d215677ba1d3a1
GET /app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 26 Sep 2022 19:03:21 GMT
x-rgw-object-type: Normal
etag: W/"05454a03ebeda68e1812a6dbf3b74b36"
x-amz-request-id: tx00000000000000a2fe462-006331f862-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 617164
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.470674,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 22787
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (65074), with no line terminators
Hash 1aedd91ec5ab26c8d56ec06533912c00
cebbdae9a5c667f76bbf3ca0afcfd67f96a244d6
d00feb0fc8e722e279adbd32bb715a7357a801127afe152f326e113a0e230fcd
GET /app/website/css/site.348ed5d4d0fd8c90d668.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"9d2dd98d61deb4cacb57697fb2a1b804"
x-amz-request-id: tx00000000000000f958eeb-00633b21b0-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ca837640b076da822e769273456dfe43
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.470691,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 23170
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (11882), with no line terminators
Hash 20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1199601
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1664836409.472358,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4998
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/runtime.5fc7baa50c86dc58bd4c.js
151.101.85.46200 OK 25 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/runtime.5fc7baa50c86dc58bd4c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (50011)
Hash 121447559a6b705a3f2d0d49b4a51959
fb61d388b30d8de94eab33c3720bb27f1bcff4bd
c0ca9945ca5aa448ba0e18ef9f9c63feb8c2e19cf3d294433d53a58780551a6d
GET /app/website/js/runtime.5fc7baa50c86dc58bd4c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"3a9d744d15e5cc153562164d8e9bbb59"
x-amz-request-id: tx00000000000001077c2a5-00633b21a2-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.5fc7baa50c86dc58bd4c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 027a418e4770d727a7db22f1fef32c8a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.473276,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 24725
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
age: 395688
x-served-by: cache-sjc10077-SJC, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3873
x-timer: S1664836409.477020,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js
151.101.85.46200 OK 67 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (25511)
Hash 14ad40c1a43ace9b011a851702c93ecb
e9305b6f3a939584274b15a3f1c4fb5bf10645b0
9d4a8b77438e72d188022397e4bdf11b88fe72bc2c102dc0f9b6568b9fcf1c6f
GET /app/website/js/vue-modules.7951f3068d0f5401b2c2.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:13 GMT
x-rgw-object-type: Normal
etag: W/"49ff92c44982a89cf5290643882beb23"
x-amz-request-id: tx00000000000000454d76f-0063292783-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.7951f3068d0f5401b2c2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 4e4de176832166ae2fab2801dbf0f52d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1187777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.474137,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 66757
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/languages/en.e54b6cb14aac7516be20.js
151.101.85.46200 OK 150 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/languages/en.e54b6cb14aac7516be20.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 150 kB (150540 bytes)
Hash 5b0bb19f37897a90a87ddbec76deaf3b
c27f4be55b14f57c8760f313217096125174648f
cab44a9d0f7c8242927d2254a59825051ef75a4f9d3857960c927ce6dfd311b5
GET /app/website/js/languages/en.e54b6cb14aac7516be20.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 30 Sep 2022 21:00:46 GMT
x-rgw-object-type: Normal
etag: W/"ea2a5c73385b07248a96d1755aa2b6cd"
x-amz-request-id: tx00000000000000da27eed-006337594f-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.e54b6cb14aac7516be20.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2decba050def7aff2f3b7c4c1f8291eece9fb981
x-request-id: 9acd0f1b3c06c2e4b4e204200d16e223
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 264594
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836409.474361,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 150540
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js
151.101.85.46200 OK 3.5 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (16702), with no line terminators
Hash 83197a61107108e5f793f314c5711108
66d3b6b2061a4532fb2fa4cdde9cb0a9ecf4d0fb
a3977aa2368876d57acc53510be1afd7a26aadef119e291b6d74afe912dc7d07
GET /app/checkout/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 22:08:50 GMT
x-rgw-object-type: Normal
etag: W/"475364c45fded47d2863a618e7f0062e"
x-amz-request-id: tx00000000000000fe11aa2-00633b5deb-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1295
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.622042,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3514
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
151.101.85.46200 OK 317 B URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (1542), with no line terminators
Hash 27ee0fccb172f6ed41222a495a62205c
dba3bf87197abf047d477bf26fd8530fa086f194
327fd4f3b36cfc138c5adc30543b90e617a1c1b4eab51f39c9c53f81190e632a
GET /app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Thu, 29 Sep 2022 19:39:07 GMT
etag: W/"6335f45b-606"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 355457
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.627692,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 317
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.40.161.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.161.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Av6eqYg/R58ANLjOr1D2cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wNE7GUtQI3/wN8WeeD7x6CfSFik=
cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js
151.101.85.46200 OK 4.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (5681)
Hash 595a9769e28e42b687d05be6e44ed1b1
ab07b4524f8b5c9efcc3c8eb408c015933f87b94
06d08e2bc2373f5fe3e0138ac069b6f9e644a9456ae7832a5d253e5ef7a75252
GET /app/website/js/41630.acde68362a4f85b8242f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"e3fdf96b41b353e0c37f1f9918024cf3"
x-amz-request-id: tx00000000000000faa965d-00633b21ae-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/41630.acde68362a4f85b8242f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 26c537d6cf5ccf960051b7d628a90c67
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836410.081560,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4152
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js
151.101.85.46200 OK 4.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (9463)
Hash 414d8373f1c7696806c33ab7299bf4dd
cd160cf499b27ba121c837c3202b8047ad83fb56
2e291b8826d1f4b2c17be73b5508acc3c8e23de8f83728fe90f3158d5445cc83
GET /app/website/js/49709.cb80a757b769d7ca4750.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"85314933e3dbc3506fb76dbbc18b9cb1"
x-amz-request-id: tx000000000000002699229-006324b375-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/49709.cb80a757b769d7ca4750.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: a1e9b5b80d2e42cf7319f9e882b9a88c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1116905
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.085509,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4057
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js
151.101.85.46200 OK 3.5 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4209)
Hash d0c3059bddab007ccee07c57336bba88
e0fc4e1f8089d3bae817d8ec888c151f95fd1402
f3db4c4c1c1698425a2e8a9f9aa971ef14ce88681219b227626a9c3dc1790c7e
GET /app/website/js/88857.6e34b40bfa10dd648375.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"9463f4be6c8d7a23f1a7f6a702ffedac"
x-amz-request-id: tx0000000000000026990a6-006324b373-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/88857.6e34b40bfa10dd648375.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: b9fa93b1b68f4f1d898db568f1582457
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 585056
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.086527,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3472
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css
151.101.85.46200 OK 395 B URL HTTP/2 cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (857), with no line terminators
Hash 8d7fcccab55897af77b9e87a64f57b20
8fabb83941907077788025f05cb325c0c7340794
ca291141827c7605d3815f5bd0b2fab261f6f815d9b5661dfeae7153d40bc346
GET /app/website/css/home-page.330abfc8608ec69de0f5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"caab02dd387044f4022e40ee2c3b28f9"
x-amz-request-id: tx00000000000000a8b1be9-0062d074c4-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 995f38829174b97993a0ed18090ad16d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1807113
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.087760,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 395
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js
151.101.85.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (19908)
Hash f201fa985a8ebdce48c806e4f758582a
e03ed9757e25fd1f7649d2402623a8ba1f5b400b
9453697232ae9df8797a4aec6e547c62c95866ca5597a2feeefc2493eb8c48ab
GET /app/website/js/home-page.44e252f4ea49e6c88e3b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Sep 2022 16:40:02 GMT
x-rgw-object-type: Normal
etag: W/"a9917ab68ed49d660f45db725ec853af"
x-amz-request-id: tx000000000000006aa3142-00632b3ebb-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.44e252f4ea49e6c88e3b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: 5f8e79841a71b39728ed4464187af8f4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1057854
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.088316,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6026
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash e75acbc46a473afe3056a696e60438df
7501518104d839b14d56b5d2930fb146aec4fda7
5a3322de554eaeb645a6074599992195eb8124605aa73d1c9e289419f0769bb1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 22:33:30 GMT
Last-Modified: Mon, 03 Oct 2022 21:34:35 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NEuE5wz0bk0nEGkmaqHZ9VW4j_1IwzuSrgnQZETgWQMl_7E4vBD2DQ==
Age: 3535
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash e75acbc46a473afe3056a696e60438df
7501518104d839b14d56b5d2930fb146aec4fda7
5a3322de554eaeb645a6074599992195eb8124605aa73d1c9e289419f0769bb1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 22:33:30 GMT
Last-Modified: Mon, 03 Oct 2022 21:58:19 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qm0GLzdyUuR1L_jnRHajrZo3jSx3g2hySVeg2jhJDEF3-ZLJkxVt4w==
Age: 2111
btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400
199.34.228.39200 OK 3.4 kB URL HTTP/1.1 btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400
IP 199.34.228.39:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a9463d86ebe0fc07b2c1d61117e6af2
ef0130f409c753d77b6f31878ae8537671aee48a
9288de1772ae84636ca3c486fe2a17fb809a57e52c045be5838500a00e207181
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/webp
Content-Length: 3350
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "pUVJox2pbF5IewxCJptLe0qIUOwSEzRRyBLBDBPyhlw"
Fastly-Io-Info: ifsz=4132 idim=224x225 ifmt=png ofsz=3350 odim=224x225 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx0000000000000101f6f8f-00633a4912-c695612-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z458d
X-Storage-Object: 458d0a97c28699841111023901d9badf01a35ebd529bcd2c02871ae61e9a36f8
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 1318
X-Served-By: cache-sjc10038-SJC, cache-pao17470-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1664836410.240579,VS0,VE1
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn50.sf2p.intern.weebly.net
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 22:33:30 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
35.188.42.15200 OK 2 B URL HTTP/1.1 sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP 35.188.42.15:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Content-Type: text/plain;charset=UTF-8
Origin: https://btconnect-109798.square.site
Content-Length: 417
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://btconnect-109798.square.site
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1994
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 03 Oct 2022 22:33:30 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 03 Oct 2023 22:33:30 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
199.34.228.39200 OK 894 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with very long lines (894), with no line terminators
Hash 425945c21c361516d57dcfa68f2adfa0
fd1e931b775c396cd3f02d5bc13600e305c5a93d
e49bdcc237529abb3baee5c2ea30e106e2a9b05b78fcbc4542a271e435d38db8
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Content-Length: 78
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn115.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 894
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive
btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg
199.34.228.39200 OK 1.7 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Hash 1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001ac6ae7-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: d22fd6d0ef4446e88e5dd5e4e652697e
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24a4a122273ef9f772852031eb13114a
c20f1fac9020eb4bd6c84583f73872979639b991
8e1ffbed5f156637ed2f22e81d03f6d85eff0c28237c1639ea5f977e92ee7b70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4151
x-amzn-requestid: f709a11e-cbea-4965-8502-94ddbd8768bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvSF3YIAMFdow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-29bfa31d51e8f60b38136dba;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iHjSrLdzntzVnJ-qaRf834nLglcKXY1cTgLY5VcCyKtp0lwN2gGnnw==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 2950
etag: "c20f1fac9020eb4bd6c84583f73872979639b991"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7df28993-57e6-4e7f-9751-93778578bd1e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7df28993-57e6-4e7f-9751-93778578bd1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6258b8768ba4c3edcc049c494dac733a
40e4337611c74e26efbc53633ba1a9ac04d9ae81
b170aaabbd17b712ed861f5e1d13ad2ff3604b47e9ec833077caeb1199f44d08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7df28993-57e6-4e7f-9751-93778578bd1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10595
x-amzn-requestid: 7cc6c91c-4dfc-4c17-b27c-5c0eec4a390a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqdOHTzoAMFYdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5787-11525116257b72eb382ecefa;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qglxUK18M0WVvuSzN-pkwoIagT-hMmp_77qKAVaGq-3vJ4gwwsRzdA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:14:26 GMT
age: 1144
etag: "40e4337611c74e26efbc53633ba1a9ac04d9ae81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TVz3oiy-Z2r9lGFDgsnGNxotvvAPeOaa7LMzqs432QjZpZo-PNt1-g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 64239
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg
34.120.237.76200 OK 2.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb7d0bdcd7cf60e39ee64d92f5694384
0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f
a6dd1fade6b47e539dd42ed07d2cf58179db10fe946809f201889a1f9c4ef282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2761
x-amzn-requestid: 00090151-da40-48e8-98f0-a0c579fe6d1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI_EgdIAMFc0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556c-06ceb1750213c44130848bf2;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tnLSKunYCXPQiG357F3pxokcn8BJDjBxvx8MmQo2XwY7_eCzD7ZlIw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:31 GMT
age: 2939
etag: "0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d0984d7-fe4f-4f96-9f0f-17e0197a5cb6.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d0984d7-fe4f-4f96-9f0f-17e0197a5cb6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78caa2bb8e856110416bc85ed2420d20
1d90e98d3666fc8618130eac15972d3a08addf16
5175905bdbcd0a325ff666148a77503f14d1922d826ad14a9c3d09846d77dff5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d0984d7-fe4f-4f96-9f0f-17e0197a5cb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5857
x-amzn-requestid: 51f3a938-30f6-418e-970b-439bdfbb7c2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHIAIAMF6PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-6d97d5ff3c3589ee1e900a3b;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OModa8qHXEimXsJhr1DiYifYbFLgI-yMvAaKZA2SsRyU1N5CWwoVOg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:16:34 GMT
age: 1029
etag: "1d90e98d3666fc8618130eac15972d3a08addf16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 2950
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates
199.34.228.39200 OK 70 B URL HTTP/1.1 btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9752b06c768724a72741cf9388713596
3c05993fc47e53d1edaa9c03779565a7753f3a61
1d97b677c782c9ae57c8b4dcb6afd88a8068ea3cd133a00cf1050dfe0b4d835c
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /app/website/cms/api/v1/users/139428721/customers/coordinates HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:30 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D; expires=Mon, 17-Oct-2022 22:33:30 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; expires=Mon, 17-Oct-2022 22:33:30 GMT; Max-Age=1209600; path=/
X-Host: blu75.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: a8dc5cef060d7224d970e33508bbc448
Content-Encoding: gzip
btconnect-109798.square.site/static/icons/payment-methods/applepay.svg
199.34.228.39200 OK 3.0 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/applepay.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Hash c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001a5c248-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: a357db0442cca67c349a33568ef581f0
btconnect-109798.square.site/static/icons/payment-methods/visa.svg
199.34.228.39200 OK 2.2 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/visa.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Hash 98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx0000000000000345db325-00631274b0-bfe36ba-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn41.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9dcd196fdaf0d2d4e853a771663c571b
btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg
199.34.228.39200 OK 3.1 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Hash 2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001af98ca-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu133.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 16819ddfa74ffa242d998366be06b809
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
199.34.228.39200 OK 201 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Content-Length: 83
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn135.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg
199.34.228.39200 OK 1.2 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Hash 2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001ae675d-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9404ee3d774d456851a4e591c3a23cdb
btconnect-109798.square.site/static/icons/payment-methods/discover.svg
199.34.228.39200 OK 3.1 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/discover.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Hash 9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001ac6a0f-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu75.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 76d0e74dd2c541acdeb8dbc4a81deff3
btconnect-109798.square.site/static/icons/payment-methods/jcb.svg
199.34.228.39200 OK 3.9 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/jcb.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Hash 32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001af9a36-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: ac300f5589af74e72c592c1d396e39e7
btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg
199.34.228.39200 OK 1.4 kB URL HTTP/1.1 btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg
IP 199.34.228.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Hash 4d9798d0983422b1931dbfb934e04144
b70cb2e3822c77177ba56a351e309d5394263105
880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /static/icons/payment-methods/cashapp.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000db9882a-00629614f5-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn41.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: af229e40d0aca47c288ca4c157f2cdc6
btconnect-109798.square.site/square.ico
199.34.228.39200 OK 6.5 kB URL HTTP/1.1 btconnect-109798.square.site/square.ico
IP 199.34.228.39:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:31 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001ac6ae5-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 7c44c9b25dc4cd55dc3f3d4d6a9a17fd
btconnect-109798.square.site/site-icon?device=ios&size=180
199.34.228.39200 OK 1.3 kB URL HTTP/1.1 btconnect-109798.square.site/site-icon?device=ios&size=180
IP 199.34.228.39:0
File type PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Hash cf3a9fc9da142c7093ed2cd642a545db
630165f76a5e26e7bfb9db0326e8ac62ce69345e
14d2c0d565f8995ac59174d41f4b469e700dc21dfdb1b72cbca43a5c1bdf0503
GET /site-icon?device=ios&size=180 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:31 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 62a1861b71fc90276e3ae25f6656100e
cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css
151.101.85.46200 OK 146 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css
IP 151.101.85.46:0
Hash 63e426ca2fc1f525e07549acbdb03c86
de204bf76765003228040392b785be8a4635f71e
7cd7ad8d4405b131406a53408c0ed82f5d0f5b8b0e715f9cff32321ecb11b81f
GET /app/website/static/fonts/Domine/Domine.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: W/"f859875369df59480c1798e4b7f47bac"
x-amz-request-id: tx00000000000000b94e242-006332c205-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 0d075c7652c336288aad5158c9b3b49a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 494373
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836411.457351,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css
151.101.85.46200 OK 184 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css
IP 151.101.85.46:0
Hash 45eb1d539e7e3713ba21d3b762495241
a3ab579ddcbf6844d185c3a2b7e21b90e03fc8f0
fd87e35b1c208ed7ec8a1ff7b7a992113993b930cbffb505211571bd61897221
GET /app/website/static/fonts/Open%20Sans/Open%20Sans.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: W/"5a911d826579cde6887d45195f330549"
x-amz-request-id: tx00000000000003d2c0ff7-00631fdb2b-c03521c-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 19d42d5ea27796182ce421f67807d86b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1804304
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836411.458832,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 184
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js
151.101.85.46200 OK 7.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (15920)
Hash aeae4740ce9ca44afb45d241a6d7cf02
63c70a7ccc0218c61cf82048d8d1c9c6803ce1c0
73486eccc5e108672e81c0bd003e335f5df16d3e054ae3926cb11243094ebb69
GET /app/website/js/66828.7a1f2b6b3048c8a9abed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"cfc68333314856ff257312138eb8e7d0"
x-amz-request-id: tx00000000000000bee0010-0063331d49-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66828.7a1f2b6b3048c8a9abed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 8106d52edec8e55a0681b3b724dce240
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542120
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.484112,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js
151.101.85.46200 OK 10 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (17020)
Hash 6d29cec60d1053f23cf97c994eb73a45
a29a50007be195639b28438e3e8fac66deaf7fb4
88645a58ed4ff84af06d664587985423e46e68a335ac68dd42db65fe011417d7
GET /app/website/js/9458.dfb54a3d2009837dfc1c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"74b08c80795cf6c4c2cd8979b88a585c"
x-amz-request-id: tx000000000000010617a82-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9458.dfb54a3d2009837dfc1c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 68cbcf8561fe2c55fbd959bb2eae33d9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.488432,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 10254
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css
151.101.85.46200 OK 3.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (10021), with no line terminators
Hash 0592b530cbf990977268f19f0ce0c027
e8a33134a639a676dda386f796b21bebd8a90511
4e0b9f188663c9d24bc3c665366dba35e2f46337c97ffb160de58ee765664292
GET /app/website/css/navigation-mobile.b78212d8d37b56895f14.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"8857de04e5bf7fff2d6541c8abb6106d"
x-amz-request-id: tx00000000000000bd3e41c-0063331d56-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 5a7c64583387578e4dd9db8ead97b0e7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2403
x-timer: S1664836411.488996,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 2999
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js
151.101.85.46200 OK 18 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (30694)
Hash 324d82707a7157490d4e1a23ab3d0915
a2b2be87328fa1894aefeb42593106a7aad321db
f09187714bc26344c2f06bd8896fb0a4c3779d4fbf0486035381c837debf2fb3
GET /app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"c42f7160d4813844aa9c3d1d52fe51f1"
x-amz-request-id: tx00000000000000f7bbdfc-00633b019c-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.4492aebe016a3cf84ad3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: cd8d406ab1d4b3d5e4b28614329a36eb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.489703,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18200
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js
151.101.85.46200 OK 4.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (14043)
Hash 178758f917347be3cc16039638a3a080
1ebcaccefe2a24d321638fde0988ebba235e18df
e0fb3cf963ea543c17b0ea8d0ead49e0c389774758d0a1036098dfe0a22b4e44
GET /app/website/js/89814.7c33af088cddc4109e43.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"06d79aaa6a4d188323f29ce9534ab179"
x-amz-request-id: tx00000000000000bf2b936-0063331d4c-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.7c33af088cddc4109e43.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 46f4336f14f055330c9ccccabefdc994
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.498231,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4338
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js
151.101.85.46200 OK 7.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16366)
Hash 2cac664b5fcd18937498e65fced2cfb0
86a9c74dc43e77fe2e907dec4bcadd06e12e1238
61af8efb689db443c0cf4beec37d6ed8005fe8a15d5689922bf3f8a2c5282161
GET /app/website/js/63078.d8b67652f8a80e7ebc30.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"9381a58af2c4d899bf85a5d6dabfff07"
x-amz-request-id: tx00000000000000f90a704-00633b019a-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63078.d8b67652f8a80e7ebc30.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 583d0826dc59f81dced7357aba1f7027
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.499677,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js
151.101.85.46200 OK 8.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22834)
Hash 59216768b8576418d667cecaa1b57c9e
7e299a69e55515b1e89f7f0e08d14917c360dd8f
1f1ad83672f2819c2b76fb5d8a02c0b483a77a1e781760064c92c40f9993fa0d
GET /app/website/js/3464.0e011b7da28b4dcc50f9.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"d1fff5f103d924ecf44e37f414dd7644"
x-amz-request-id: tx000000000000010617a85-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/3464.0e011b7da28b4dcc50f9.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: adf510b1c3dca3e607c242fdb0258334
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.500476,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 8310
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css
151.101.85.46200 OK 5.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (20997), with no line terminators
Hash cb23449d0e7a6f85177e66f9e4cb8b97
e6698cb203cbcc6490b181c9324ebc0d9947133b
2dd236f452096dd4066d3c457d91fa9d9304065bd99ef42eb1bd39071655f3cd
GET /app/website/css/69151.1d587d349a2e30b7c539.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"38535bbed5cc9591643d0bfd54dff7cd"
x-amz-request-id: tx000000000000010818a10-00633b0186-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 4b55aa9ca5ca777e0f48a2815c7a79b5
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.502651,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5080
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js
151.101.85.46200 OK 9.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (20536)
Hash e5f819fd2471f0d39f40a424b6e738c3
025955df8e6f7816bdec557210b0b6e2569a56a9
80886528d1a068690cab927c342713be1cf493123535c3560909ffd0c85dd879
GET /app/website/js/69151.43baa48b8e2696afbaee.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"cc04044592d2e34cc614fa22b6ac2f54"
x-amz-request-id: tx00000000000000f7bb41c-00633b018f-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/69151.43baa48b8e2696afbaee.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8872d53f1a9426ac16d95767d7b23df3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.506845,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9796
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js
151.101.85.46200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16809)
Hash 84c5d286b0f8559fa7dfece05a6d470f
70c6ad1f4fdbe1a000a2456e8c7f1447714b6f79
d14e896d3d64286851790eb7627c34757fdd5238c5fe28d4d6bd35176d9551bf
GET /app/website/js/28134.77d6819aef6675b6d037.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"7b6032abc58def0599a6d34df6d728be"
x-amz-request-id: tx00000000000000cb85c8d-006335dc37-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28134.77d6819aef6675b6d037.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 410c1612457aa0c225a78004c5722c86
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1664836412.515736,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5953
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/cart-1.35b50145c690757d9bfc.js
151.101.85.46200 OK 32 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/cart-1.35b50145c690757d9bfc.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (9219)
Hash c7818639c63c41b32e09b966e527cce7
9b3bb279647bcd226e42d410346b05c368915390
31ee56ec4407e2241f8ca4c704629dd3329a62906005afa9ca7620657064b885
GET /app/website/js/cart-1.35b50145c690757d9bfc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"c0371b35c318b32cea310567eef29314"
x-amz-request-id: tx0000000000000107b8512-00633b21b3-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.35b50145c690757d9bfc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ff2932cc2546c2605748de185c7d37d7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 16776
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.519277,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32310
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (13912)
Hash 493704f053d7437bdc89df0882cf81ed
084f2f1d43b5210e42f32e079008988d4fe8d2a4
a6cad1c76c4e7223ad170384bcd12a4bf47fc58544aed550287c67d7169c2255
GET /app/website/js/28962.d18168a4fef01bd4d15d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"370799bbaeff3ba460557bb19cbe82fd"
x-amz-request-id: tx00000000000000bd3d7a9-0063331d48-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28962.d18168a4fef01bd4d15d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 82213c86f96f032b754b4908844d5e55
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.533754,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4977
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js
151.101.85.46200 OK 5.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (12428)
Hash c2c1ee3bb6fdfd4cd2e8dd94691ed5fa
8cba707131ee4535b7587d21dab4a372ff3d315f
e46b600635d77073913fe13797f1ebbd3e769cf1021833c503d1acaea6686cfc
GET /app/website/js/31083.4f8bf72e65310781cdc3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"779d3ba5eba2e36c5e1e5214df356c5a"
x-amz-request-id: tx0000000000000108194d0-00633b0193-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/31083.4f8bf72e65310781cdc3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 3c476c4d944b58a3a179c7150d72d74a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.569120,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5225
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css
151.101.85.46200 OK 4.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (18914), with no line terminators
Hash 9c48deacca63997a018adc4d9057af6c
9a7a3c896c94810be3967b546e1c28deb945ebc3
32d2e1cbe1c50b9a78bf0d1c45d52b2354f43f2c60f7b4f0f6896e60467b0ad0
GET /app/website/css/62651.637819b958113e0a7acc.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"224ec22bc5a895e36f855a2be31ecc0d"
x-amz-request-id: tx00000000000000bd3d858-0063331d49-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 24739b76cac0c2bc67311f83cc8814b3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.569230,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4794
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js
151.101.85.46200 OK 9.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (24677)
Hash 251da6b85be6e25a29fac83d142e17a1
91db8c481d50f2515091ec4273f11bac20c91846
325457af8d2eafe9bc1e9e4ed949860ea388c180e687a5871a8ee79cd6ff0a64
GET /app/website/js/62651.3b34ab6bb4023a44208c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"ae704f34826303439556045a14365f92"
x-amz-request-id: tx0000000000000106180e5-00633b018b-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/62651.3b34ab6bb4023a44208c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: e0208ad9de0de3e9fe6f80d5b5bd11ff
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.570385,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9367
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js
151.101.85.46200 OK 3.9 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (10185)
Hash ba2aca810f7b8482853e7d5d40b62776
a4b81ae91f35d9cff43145e40be912078f5d2eaf
cc34afd70a0bb32291a2be71f92beb22d281961649772b806d997511ab51a0da
GET /app/website/js/33182.694277c0f3aea942d6b4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"fc698b0eddcf2e0d002759d3f7c1250a"
x-amz-request-id: tx00000000000003dbad805-0063210df8-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/33182.694277c0f3aea942d6b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: dd6054965014ba80d9fd7e89677c34d0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1197627
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.570478,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3906
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22743)
Hash e1a4d949b3ae5666ab4ff4eea75bec1e
16aea1549ce0a775a25c3427a39c000f308cb69b
7a751fa9bd7f77c6107ae846a49ed1ec7326de269c910a483ff88c7d0469499d
GET /app/website/js/19384.efee8b71a6a648cb9204.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Sep 2022 18:33:20 GMT
x-rgw-object-type: Normal
etag: W/"aa1ab652fd9758b5b518b2a9fa053202"
x-amz-request-id: tx00000000000000c0e601f-0063336316-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/19384.efee8b71a6a648cb9204.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: fc502d8e34c167131b5c714a8eed0a1e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 524325
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.511280,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5005
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css
151.101.85.46200 OK 5.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (22082), with no line terminators
Hash f44a367ff6f9cef7503e149284dda04e
64eb1ace475f0233b433fbdeaa899e342a1598f7
c12b02a74aaa8eb5569f06c3ab19a94901ce124edf917595d0926e327193e1af
GET /app/website/css/header-4.1541832b8fd135e7fdac.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 20:52:07 GMT
x-rgw-object-type: Normal
etag: W/"b3697b8d5ccf39c18678e88f0e95670f"
x-amz-request-id: tx00000000000000b2e563e-00633362e7-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 9e93f5b4898e059b6938a50a5d13f035
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 523992
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.580800,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5644
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js
151.101.85.46200 OK 29 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (32737)
Hash 02e82ade0a46bb828c8e21c1aa4388ec
049fe9154fc44fa0fd26325c3d3a0ef2404e7564
3af9294f31163424c81cafd5205a8eaac32051fb17e2d44f137f7a996030117f
GET /app/website/js/header-4.44530ebe5d0024415615.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"d7457d729041075183ddf5da7948ee8c"
x-amz-request-id: tx000000000000010618927-00633b0195-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-4.44530ebe5d0024415615.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8cd1b1c3afd81b74199cf28fd2b0cc5b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24634
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.580907,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 28740
X-Firefox-Spdy: h2
cdn5.editmysite.com/app/store/api/v23/editor/users/139428721/sites/790344227800140344/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
151.101.85.46200 OK 1.5 kB URL HTTP/2 cdn5.editmysite.com/app/store/api/v23/editor/users/139428721/sites/790344227800140344/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
IP 151.101.85.46:0
Hash 669b500fae061d89b31600f7c3401a52
00122679f5cf8c1e10343201432cc45bcbdae574
1db0a04d4b476ad42ad5684047950d48a40d21ba5050a58c4a33a548086c5f3e
GET /app/store/api/v23/editor/users/139428721/sites/790344227800140344/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: no-cache, private
etag: W/"a50977b7e57c7fd2cd59323140273d34"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: 46b8cab6eb58d84dbb2c061204cb322e69087e20
x-request-id: 49cb5ae5d52776b848e4faab32681b18
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 03 Oct 2022 22:33:31 GMT
x-served-by: cache-pao17466-PAO, cache-bma1678-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664836411.923133,VS0,VE390
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js
151.101.85.46200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (8710)
Hash 427c7fe2b3d549712100f6820b08efbd
c229680202f32a5d973fd8f91f4be59b9c050e28
d9ad555d0cc050b5522d23427dbb81b4be0bb3182e979e53359916e144f5d901
GET /app/website/js/26267.78a7b8e043fd38ce5bed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"da9c41584ada728a23d91b0505f40439"
x-amz-request-id: tx00000000000003e0b9c83-0063210df5-c03521c-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26267.78a7b8e043fd38ce5bed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: f26bc6b476269279cb2711ab775bd8cd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1188335
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.600344,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3577
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (18330)
Hash f2397a8edc8314d2ab89af5bef811d57
b88f044f6f2bbc9cdbdbcd6ac2a6829f0fc99f29
bf36d69af07442ee1664ede9c7069461ea97a92e299fc1ba6284c4b332e58ca0
GET /app/website/js/91272.1c5d597f56a343a39169.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca7b2a99099a151b51b4c15d1d2bc11"
x-amz-request-id: tx00000000000000bd5f4c2-0063331d4c-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/91272.1c5d597f56a343a39169.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bcc8579caa22acb61c992573b277d224589c7db6
x-request-id: dc38a1708fb97f3ab8290ddcf3befc5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627178,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12604
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css
151.101.85.46200 OK 6.1 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (6231)
Hash 720b76d114220c6921ffd7271317bf07
5d9294103532ae88683660cc0a01f95197e848ba
dc9e9ffec23369ebe881ca72c78d0f8cd52674fd37bbde690705e8213a04574e
GET /app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"8b4ceee22aa43054751ec463b5144296"
x-amz-request-id: tx00000000000001077d03f-00633b21b3-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: d6ae832b1c28c118f59abbbc4abc5b2b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 16776
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.516944,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5220
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/contact-us-1.07fc26c6091d2855dfca.css
151.101.85.46200 OK 4.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/contact-us-1.07fc26c6091d2855dfca.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (16271), with no line terminators
Hash 509ea9783cd47294e65eb3255b195916
5d7a757d060439a226cf3756de5808109a49d865
bc65e7884a9ae3d1cbe3a9a0f6c3cdef710fea487611f4753767df8142e21ec5
GET /app/website/css/contact-us-1.07fc26c6091d2855dfca.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"bb5294ffcb780c3463e560b110320d49"
x-amz-request-id: tx00000000000000bd3ed68-0063331d61-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: f693fd640aa2b192200fbdcccd6f183c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 515970
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.627692,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3992
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js
151.101.85.46200 OK 16 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (22595)
Hash 5a6cc2d02a3220f2d0c07ce8afe00735
a1f15e6a23aa71b8f0a554a7408373942c314238
de865be6736e5389d52ca365e09dbd414fdceb6a753c8b5dec34a650b8ff2a5a
GET /app/website/js/584.caaf0ad96373138bf188.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"1f1a99ca1c046e3862230cac549e8225"
x-amz-request-id: tx00000000000000d87dd9c-006335dc24-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/584.caaf0ad96373138bf188.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 8e046d250cae6802ae7fc9a80c3a3dea
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627334,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 16069
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/contact-us-1.a714c12e8ec682e40ee6.js
151.101.85.46200 OK 809 B URL HTTP/2 cdn3.editmysite.com/app/website/js/contact-us-1.a714c12e8ec682e40ee6.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (1661)
Hash 53650ad32ed3e3c578a1b630189dd1e9
775141e2e960b814e0074e0d5b7031e521c22111
11994ae02e77098450d3d08168da07b3b4c36c79912fe452b6a55a84487e9069
GET /app/website/js/contact-us-1.a714c12e8ec682e40ee6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:08 GMT
x-rgw-object-type: Normal
etag: W/"b222db33ae5504b202e445c37b055cc6"
x-amz-request-id: tx00000000000003d9c24dc-0063210e0b-bfe27ea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/contact-us-1.a714c12e8ec682e40ee6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: 4b2b6539c9930ad3d54f9db2f0441005
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 597355
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.627991,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 809
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css
151.101.85.46200 OK 6.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (25632), with no line terminators
Hash b99bc0745e6201b918c78b0bf8e9de7b
e9fb8a3d15b933ae2f822db2e66fcc1712f7e2cc
729fcdb927673a30d1f50c66cae501b20f88be96cdecdd12784bfb0fb208bd05
GET /app/website/css/66670.b694d05e69f75f469d70.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"b3b4a5077e6334122ff50105eec7420c"
x-amz-request-id: tx00000000000000f9ed065-0063397800-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 81e76d581d20b11b05218010697e576d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24649
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627972,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6366
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js
151.101.85.46200 OK 14 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (16522)
Hash 83ee6769d19ebb77088fae2e871c6183
5f690d95fd04d9cc3b9216fa0b21637a4837479f
12113db4803a5fb421bb0dc3941a52159ad74ceb069f6fd050aa2e0c327e1921
GET /app/website/js/66670.a7a5bec786b65c6f06c6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"35476ff365f33e157ca81acd30b616b4"
x-amz-request-id: tx00000000000000f9098a6-00633b0189-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66670.a7a5bec786b65c6f06c6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 67863989620f35dba9e32f83e58603ac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.628553,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 13819
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/footer-5.6104f09d4a17484472e0.js
151.101.85.46200 OK 1.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/footer-5.6104f09d4a17484472e0.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (4258)
Hash b2719113de933b450b5305081fb91709
57cf846683ceb2373f2c43c28e913412ffb7d1cb
51f49ae77134cc71220ebcbad329d4641f290190fe90240ddc728a662fabe417
GET /app/website/js/footer-5.6104f09d4a17484472e0.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:09 GMT
x-rgw-object-type: Normal
etag: W/"0b2c58a2f8166ec9ada9989daead7031"
x-amz-request-id: tx00000000000003dbaefab-0063210e18-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-5.6104f09d4a17484472e0.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 88066b6a9d228a390e1a06f9c114400a7771a2ab
x-request-id: 817152804a2a546bb6760a77555342f3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1206887
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.628724,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1340
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/footer-5.a31aac545d842d0f1bd5.css
151.101.85.46200 OK 288 B URL HTTP/2 cdn3.editmysite.com/app/website/css/footer-5.a31aac545d842d0f1bd5.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (848), with no line terminators
Hash 20bee51534e27efb91e4d52e9146e6df
d1fea0b3bc43963595aaf87af0a2baf1b97e8feb
e78244b5f41fc238340d9010caa9cc584f3cdf156ffffdda5daedec9c4a4f3ba
GET /app/website/css/footer-5.a31aac545d842d0f1bd5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 09 Dec 2021 21:01:03 GMT
x-rgw-object-type: Normal
etag: W/"cdfb816a67e7f6b5cc93bc559be24d42"
x-amz-request-id: tx000000000000036662749-0063167477-c033918-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dcad98fff835883eb4474ff15b5f35d35527cbfd
x-request-id: 6981b2767b64bf239db20d28ef9f785f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 2401716
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.628724,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 288
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2
151.101.85.46200 OK 17 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 16756, version 1.0\012- data
Hash 603c99275486a11982874425a0bc0dd1
ffeb62d105d2893d323574407b459fbae8cc90a6
4ffc35ac4d5e3f1546a4c1a879f425f090ff3336e0fce31a39ae4973b5e8c127
GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "603c99275486a11982874425a0bc0dd1"
x-amz-request-id: tx000000000000036fbba15-00631696b1-bfe36ba-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dcad98fff835883eb4474ff15b5f35d35527cbfd
x-request-id: e0046c3270b2b7a07c0c59c70a7e5d1e
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 2411658
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.704250,VS0,VE1
access-control-allow-origin: *
content-length: 16756
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2
151.101.85.46200 OK 17 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Mon, 22 Aug 2022 16:42:23 GMT
x-rgw-object-type: Normal
etag: "e43b535855a4ae53bd5b07a6eeb3bf67"
x-amz-request-id: tx00000000000002a2d83e3-006303bc41-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 1dea62ed7a4df6ba0ec605494d4a9bf4
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1804303
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.697355,VS0,VE15
access-control-allow-origin: *
content-length: 16740
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
151.101.85.46200 OK 351 B URL HTTP/2 cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (626), with no line terminators
Hash ee20922f55875dd45d7acae546cadedc
491672dcd84153d29c9e2346e0f78d1fef5e729d
6594eb11c5c147a510920933dbd3177b6678ce61f0bdc38a6377761534792336
GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000000000000505f8f1-006328ebc1-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: fd6152d8aba2d68cd31403255b441574c0c6e98e
x-request-id: 8da80ad841ea012d671e5636c99cbad7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 959952
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664836412.802292,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 351
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/free-footer.43afe0e4c322617e1e40.js
151.101.85.46200 OK 3.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/free-footer.43afe0e4c322617e1e40.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (7387)
Hash 9ab2c860f287370aaaf14d00cf613667
4f5dcc7b7f3895ad4791d7d7620be632448037b4
204833cf49580a9bc07b4ebeb10bdcffab5f18618e11510f8c9429829e5b40c7
GET /app/website/js/free-footer.43afe0e4c322617e1e40.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:20 GMT
x-rgw-object-type: Normal
etag: W/"3f0eaeb3f61e794c8e09f13bd43ceef4"
x-amz-request-id: tx00000000000000d87e37c-006335dc2b-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.43afe0e4c322617e1e40.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 2400a928e6f855fe31b98213a686ef01
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664836412.808397,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3204
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1892
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 03 Oct 2022 22:33:31 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 03 Oct 2023 22:33:31 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
199.34.228.39200 OK 182 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0=
Content-Length: 89
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:31 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu95.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
199.34.228.39200 OK 79 B URL HTTP/1.1 btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP 199.34.228.39:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0=
Content-Length: 77
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:31 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu44.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
btconnect-109798.square.site/app/website/square.ico
199.34.228.39200 OK 6.5 kB URL HTTP/1.1 btconnect-109798.square.site/app/website/square.ico
IP 199.34.228.39:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /app/website/square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:32 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001af9993-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn135.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9334223d0819ab56d71eee3fda8c2922
cdn3.editmysite.com/app/website/js/site.81f9834bfdb433dc7cec.js
151.101.85.46200 OK 0 B URL HTTP/2 cdn3.editmysite.com/app/website/js/site.81f9834bfdb433dc7cec.js
IP 151.101.85.46:0
GET /app/website/js/site.81f9834bfdb433dc7cec.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"251f3ea64bbc29712eace55eb0b59e29"
x-amz-request-id: tx00000000000001077cd87-00633b21b0-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.81f9834bfdb433dc7cec.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: fbb9cdd61ea4d2df39d4d865e14d01c9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836409.476394,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 572936
X-Firefox-Spdy: h2