Report - btconnect-109798.square.site/

Report Overview

Submitted URL
btconnect-109798.square.site/
IP
199.34.228.39
ASN
#27647 WEEBLY
Submitted
2022-10-03 22:33:39
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
68

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	2.0 kB	104.110.10.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.9 kB	143.204.42.156
ec.editmysite.com	12806	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	1.2 kB	44.235.202.207
sentry.io	2743	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	532 B	416 B	35.188.42.15
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.40.161.235
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	41 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
cdn2.editmysite.com	11564	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	26 kB	151.101.85.46
cdn3.editmysite.com	32188	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	21 kB	645 kB	151.101.85.46
cdn5.editmysite.com	43128	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	604 B	2.1 kB	151.101.85.46
btconnect-109798.square.site	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	34 kB	60 kB	199.34.228.39

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc
2022-10-03	medium	btconnect-109798.square.site/	BT Group plc

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-03	medium	btconnect-109798.square.site/	Phishing
2022-10-03	medium	btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400	Phishing
2022-10-03	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/applepay.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/visa.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/discover.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/jcb.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg	Phishing
2022-10-03	medium	btconnect-109798.square.site/square.ico	Phishing
2022-10-03	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]	Phishing
2022-10-03	medium	btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]	Phishing
2022-10-03	medium	btconnect-109798.square.site/app/website/square.ico	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	btconnect-109798.square.site/	1.3 kB	2023-03-08	2023-03-08
Pretty URL btconnect-109798.square.site/ IP 199.34.228.39 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:19:58 Last Seen2023-03-08 05:19:58 Times Seen1 Hash a260e38b624e5c1eb4f50e124109eb87 5a06e68f0df84a770a54b3f52f862b89e811224e b43eaeefcc4cc0b0fb33e20ebd1ce9635daa3df43b1a7771de323674143772e1 Loading...

	cdn3.editmysite.com/app/website/js/10678.55b737ba8e1efe89c22d.js	38 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/10678.55b737ba8e1efe89c22d.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:15:51 Last Seen2023-03-08 05:19:58 Times Seen1 Hash 06830a3cf0f01357f0acd475ae7ca68f 6682a7f35916e12cc478f0198ff44752e0e51e04 dd8722c4d9c52dcf1fb8408af97a83cde781d3c9d3384694c9fe0a49f08b72df Loading...

	cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js	8.7 kB	2023-03-07	2023-03-17
Pretty URL cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:04:38 Last Seen2023-03-17 12:49:16 Times Seen1 Hash da9c41584ada728a23d91b0505f40439 bb82ad521409c056301a8e2e87b7007c58283a43 cf4fe5d63d8e4c128789fa96e77f2b8987700f0e63c751f40e8147d3b9d45bb7 Loading...

	cdn3.editmysite.com/app/website/js/footer-5.6104f09d4a17484472e0.js	4.3 kB	2023-03-08	2023-03-10
Pretty URL cdn3.editmysite.com/app/website/js/footer-5.6104f09d4a17484472e0.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:12:14 Last Seen2023-03-10 14:30:14 Times Seen1 Hash 0b2c58a2f8166ec9ada9989daead7031 4c6a517e2047fa7a1b453393b3894c2fcc461145 e2dc7451df88d766c6eb58c84ea8a2902d869b8be1dd262faf64a475113bf970 Loading...

	cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js	7.4 kB	2023-03-07	2023-03-17
Pretty URL cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:46:33 Last Seen2023-03-17 12:49:16 Times Seen1 Hash 9463f4be6c8d7a23f1a7f6a702ffedac 89f652ca32037130340e3eb1ac638c3f0f5bcbf3 68471fc82ca64b49d3ae4c18a95534f179705e26d024f2f502671746f1d90c64 Loading...

	cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js	32 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:11:27 Last Seen2023-03-08 12:56:12 Times Seen1 Hash 74b08c80795cf6c4c2cd8979b88a585c b1546ec3a4f21eddfc9aa30f7af9d2e24db03cd1 6297facdef64dc08bcce7fff547977649d2c207a8d766331c5e00e2ac5bb7b5a Loading...

	cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js	49 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:11:27 Last Seen2023-03-08 12:56:12 Times Seen1 Hash c42f7160d4813844aa9c3d1d52fe51f1 6eb56a9f6d6b7d2e7ddcdc42682542848a14b0f6 87c7712128087da89c46a004cd70848b53e6c4170ebd7f49f8658bd46136af37 Loading...

	cdn3.editmysite.com/app/website/js/runtime.5fc7baa50c86dc58bd4c.js	55 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/runtime.5fc7baa50c86dc58bd4c.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:15:54 Last Seen2023-03-08 05:19:58 Times Seen1 Hash 3a9d744d15e5cc153562164d8e9bbb59 9a9b09251c466da042900c740cf70418c44a5ab7 952bf9de8b8cb04e06dbbb15987356ce33bca344070908dfc548032217c4ed15 Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-04-19
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-19 09:08:07 Times Seen28282 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js	9.5 kB	2023-03-07	2023-03-17
Pretty URL cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:46:33 Last Seen2023-03-17 12:49:16 Times Seen1 Hash 85314933e3dbc3506fb76dbbc18b9cb1 f8a964ad09c343bddb8e8a7304e1dec098b567ab 3215c90f70678d3292764f0f458cc9102de0dd5e33254346eee6f9d472739cbe Loading...

	cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js	15 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:41:22 Last Seen2023-03-08 12:56:12 Times Seen1 Hash 370799bbaeff3ba460557bb19cbe82fd aa6c8c7917d023d14c1330603bd3679abd17e7e4 5c5ccb90e9b23763feee483a24730913a055bcb2b03c072d7433db5c9bc81199 Loading...

	cdn3.editmysite.com/app/website/js/contact-us-1.a714c12e8ec682e40ee6.js	1.7 kB	2023-03-07	2023-03-17
Pretty URL cdn3.editmysite.com/app/website/js/contact-us-1.a714c12e8ec682e40ee6.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:04:38 Last Seen2023-03-17 12:49:16 Times Seen1 Hash b222db33ae5504b202e445c37b055cc6 c38703bfed6b0f1e3a1538358631b9e263192f8b 631d716b2e03c848859fd7baa5d5ab18c0f58e742af35ed76bc8a72728b06b11 Loading...

	cdn3.editmysite.com/app/website/js/free-footer.43afe0e4c322617e1e40.js	7.4 kB	2023-03-08	2023-03-10
Pretty URL cdn3.editmysite.com/app/website/js/free-footer.43afe0e4c322617e1e40.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:34:45 Last Seen2023-03-10 14:30:28 Times Seen1 Hash 3f0eaeb3f61e794c8e09f13bd43ceef4 f7f709d0df3af7ce6f1e7b31efaaab194eef8f50 565928f63df8b69bb0ca17146507421f06e85ffdf02adfe525ae6cb56c1f3811 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 09:38:58 Times Seen36955706 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js	9.4 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:15:51 Last Seen2023-03-08 12:56:12 Times Seen1 Hash e3fdf96b41b353e0c37f1f9918024cf3 e4c0b3b7fa1b19d0ea42616d828c8df5707190b6 ef5cbfef49eb9ab8077f1c71ed645678722c524f98eb071b1e78f816d0ce4fc9 Loading...

	cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js	20 kB	2023-03-07	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:42:48 Last Seen2023-03-08 12:56:12 Times Seen1 Hash a9917ab68ed49d660f45db725ec853af 582afdcc798b337bd4a5567eae1ecffc8b46f02f a184a88be8c74f9eb47d5d425ba61eb5739a03c5bfc24a4985adcda3b94a1621 Loading...

	cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js	17 kB	2023-03-08	2023-03-10
Pretty URL cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:59:55 Last Seen2023-03-10 10:50:31 Times Seen1 Hash 7b6032abc58def0599a6d34df6d728be bb8ced09865dfb96f2c6ca5004016823852deea5 8949eb2bd2fa0f4320b30669df1cfc565e2dd572e61271f6aafa2b0b0e09c44b Loading...

	cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js	10 kB	2023-03-07	2023-03-17
Pretty URL cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:04:38 Last Seen2023-03-17 12:49:16 Times Seen1 Hash fc698b0eddcf2e0d002759d3f7c1250a ba0fccd8d7943049e10c82b0d28c66cd63304f19 8efd7cf0b41fec4d4b3847c2caa3f8509eae36d04cd151a038909d366f0c5b83 Loading...

	btconnect-109798.square.site/	2.0 kB	2023-03-08	2023-03-08
Pretty URL btconnect-109798.square.site/ IP 199.34.228.39 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:19:59 Last Seen2023-03-08 05:19:59 Times Seen1 Hash 6c3486091d9745b561cfb7e66d62e6a8 743f97d607cbbaba50e39153369677c4288953f4 1672b10f126ed48765d016bd00aed46257cea90a7ce78f16cdc685dd75d9654a Loading...

	cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js	16 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:11:27 Last Seen2023-03-08 12:56:12 Times Seen1 Hash 9381a58af2c4d899bf85a5d6dabfff07 7d25760ddc87516112c753cc29c07f1542540448 2b237fa4f36bfed9ba5aea9ee693ae4898e64af57299c421c88075725970929e Loading...

	cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js	23 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:15:51 Last Seen2023-03-08 12:56:12 Times Seen1 Hash d1fff5f103d924ecf44e37f414dd7644 be2c64c1ec5d6557e9f80dd85c29277632d44545 dafc565f4537d1baf9553446578127ff58f474ad0498617856cb0ffa0c991a78 Loading...

	cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js	25 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:15:51 Last Seen2023-03-08 12:56:12 Times Seen1 Hash ae704f34826303439556045a14365f92 c07873ecb812750ee75fef871f91707bbc6c09c0 74f6dc847e3774f6e07f867a109e0cce2301caaef5dc01545ca374a1b8f18c36 Loading...

	btconnect-109798.square.site/	140 B	2023-03-07	2024-04-19
Pretty URL btconnect-109798.square.site/ IP 199.34.228.39 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-19 09:08:06 Times Seen11879 Hash 1fdd2479d6ba8d5520c042ef8a2777ad 383ea6d170518471e06b0bd5330c748d7d966ef4 6cd9e9dc34c5d199beb0e095738cbe706c622914eb1a4a3a4285357d5b8f81cc Loading...

	cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js	14 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:41:22 Last Seen2023-03-08 12:56:12 Times Seen1 Hash 06d79aaa6a4d188323f29ce9534ab179 0445fe425845db778c8969232f0da2530e948ce0 43097ed4654c066ac8baa286594b2724e699c7b705dc5754bd61ba56cbe6cab2 Loading...

	cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js	39 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:11:27 Last Seen2023-03-08 12:56:12 Times Seen1 Hash 35476ff365f33e157ca81acd30b616b4 348a33126f499555b07e1fe8caca34347b685844 be861771e8468d87afa1c4fa03fab8e0241b1a91cc405500f1aebaf4dcf792c6 Loading...

	cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js	162 kB	2023-03-07	2023-03-17
Pretty URL cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:40:23 Last Seen2023-03-17 12:49:16 Times Seen1 Hash 49ff92c44982a89cf5290643882beb23 5aef2327067bfdf0ef61b96c68b41a5cdd15f973 e7783f03046976c71e45b91662f0b6653329ebc9aebc10f85ea3e7e8fb378d08 Loading...

	cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js	14 kB	2023-03-08	2023-03-10
Pretty URL cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:48:03 Last Seen2023-03-10 14:30:28 Times Seen1 Hash aa1ab652fd9758b5b518b2a9fa053202 d2ddf183c77d84114eb7448fdcf982b7e9e6a1e6 03acf9e11401be6c23b0e6ff6527a2bc14b1f0d290ef37721edf4f1cee99bbf5 Loading...

	cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js	12 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:11:27 Last Seen2023-03-08 12:56:12 Times Seen1 Hash 779d3ba5eba2e36c5e1e5214df356c5a d315e186d815e5557dfbcfc5a5fce349ff9b9baa 718abfc61eb31efd4dc678a610ba558b9008e5ae80567506c2ddbfe67696537c Loading...

	cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js	88 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:15:54 Last Seen2023-03-08 07:08:59 Times Seen1 Hash d7457d729041075183ddf5da7948ee8c 1e8c2b2f0bd83ea36d828bdd5c4ca24721234103 ba51e1bc8973eb58a15f0d906523f457b568a4875d17434732a3e292b1705e7e Loading...

	cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js	35 kB	2023-03-08	2023-03-08
Pretty URL cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:41:22 Last Seen2023-03-08 12:56:12 Times Seen1 Hash 0ca7b2a99099a151b51b4c15d1d2bc11 afeb630c44c50c9c9e3684aad81ab9171331319b 74cbd223697d0933f033c5d477cbe666e9e8778921db2eec35ac644b191b3d3b Loading...

	cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js	45 kB	2023-03-08	2023-03-10
Pretty URL cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:34:45 Last Seen2023-03-10 10:50:31 Times Seen1 Hash 1f1a99ca1c046e3862230cac549e8225 a8db7704f1fc8486db8205687cf0122cb2a244ca 4aa1de3697f2afe9377464fdd8ea9d92126ad874dfe69b7e3bed3cf3c9b329ca Loading...

	cdn3.editmysite.com/app/website/js/72698.4b459ae4c87e45cb7329.js	16 kB	2023-03-08	2023-03-10
Pretty URL cdn3.editmysite.com/app/website/js/72698.4b459ae4c87e45cb7329.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:34:45 Last Seen2023-03-10 14:21:49 Times Seen1 Hash 00796a34fb6d97620620b3dc316bc1ef 6938a18d0a834840d8957f831870a46c5ac3002a c9a2d73e3a250fdf0369de0bfe1ed6febaaacd4c73288f3958d8c5de6ecac74f Loading...

	btconnect-109798.square.site/	18 kB	2023-03-08	2023-03-08
Pretty URL btconnect-109798.square.site/ IP 199.34.228.39 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:19:59 Last Seen2023-03-08 05:19:59 Times Seen1 Hash 3ad0bb1f07b6930c6e68362338787e0b 87e18636b6d131f92e120d9a8823e293362c9789 c39318e2418e277d4b02b35683459eee49853c604edccdf5908a9a932fc564a4 Loading...

	cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js	12 kB	2023-03-07	2023-09-09
Pretty URL cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2023-09-09 01:51:06 Times Seen5973 Hash 40372ca3b0cfa19f4e5d664243108364 a47b48e207eaeda408cc63d1f201b8cfc2a06730 2dcf45da386abc134ac7a7d918fb0385920056ce12c85d75a1318bcdabad768f Loading...

HTTP Transactions (95)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 21:46:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ykr_bC5VU5jeobX4VhTjQkzxfIBPCbHOE1voyegpQMpO7yGD12Z81Q==
Age: 2789

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10920
Expires: Tue, 04 Oct 2022 01:35:28 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b8769801e8712cb7b401b5752da2c2
30d14bf20b20507a4fda3d7dbee9fbba7327139a
69d097718cac37cc6b77d417711c4356557f2b47c78026303bfe5f985b94a5a5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69D097718CAC37CC6B77D417711C4356557F2B47C78026303BFE5F985B94A5A5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3856
Expires: Mon, 03 Oct 2022 23:37:44 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 12yn3ZG5sihTHtUOoRRIwmhMlmg//iX22XPVsk+ffcB01JyYOPHZbo5KrjAO7Jv5cJ5L0BBbiLw=
x-amz-request-id: BN5K6CT762XFVQ5W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 03 Oct 2022 21:50:48 GMT
age: 2560
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 22:33:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1586 bytes)
Hash
cb4e313b3e96c9b8f3d6154ed341e85b
20a0f3adcdc859c61e858f9497de0f9959536b33
7b362fac9beee74e53716206a6349049ac6729a51bf4c6a7757c6ac48dbf8760

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "7B362FAC9BEEE74E53716206A6349049AC6729A51BF4C6A7757C6AC48DBF8760"
Last-Modified: Mon, 03 Oct 2022 10:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3533
Expires: Mon, 03 Oct 2022 23:32:21 GMT
Date: Mon, 03 Oct 2022 22:33:28 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 03 Oct 2022 22:29:33 GMT
Expires: Mon, 03 Oct 2022 23:08:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9In5jpHhBI6raDmDHz6Pm0gEY8zsbwEYtmhyfp-5AjszEJA3PeYkjw==
Age: 236

btconnect-109798.square.site/

199.34.228.39

200 OK

8.9 kB

URL HTTP/1.1
btconnect-109798.square.site/
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18390)
Size
8.9 kB (8932 bytes)
Hash
0e8b1be4b6a1b0a431889f27e558d2ed
77684deac0de564f325e119b58c6db22d1daa3ae
b1205f7cf2a92d6df9ace7a2dc8b45cd981c3754bbc9529ed00b71b7c401669a

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.1.1654494730.1654494728.31da809a-5d97-4f1c-b3dc-23df3825d286; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:29 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; expires=Mon, 17-Oct-2022 22:33:29 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn127.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 928148694dd323c1645a7dd07de4002f
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3631
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 22:33:29 GMT
Last-Modified: Mon, 03 Oct 2022 21:32:58 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css

151.101.85.46

200 OK

23 kB

URL HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (64282), with no line terminators
Size
23 kB (22787 bytes)
Hash
4204e7970c3000f76d8b4551eb84f772
ab466cb335d09874f07ef69cc41cfd1517df9df3
c7d3724efd7ee58c4e5a3a33bd68847f6a03df2cb84c1220d7d215677ba1d3a1

HTTP Headers

GET /app/checkout/assets/checkout/css/wcko.8ec351862e705bb474b2.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 26 Sep 2022 19:03:21 GMT
x-rgw-object-type: Normal
etag: W/"05454a03ebeda68e1812a6dbf3b74b36"
x-amz-request-id: tx00000000000000a2fe462-006331f862-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 617164
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.470674,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 22787
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css

151.101.85.46

200 OK

23 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/site.348ed5d4d0fd8c90d668.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65074), with no line terminators
Size
23 kB (23170 bytes)
Hash
1aedd91ec5ab26c8d56ec06533912c00
cebbdae9a5c667f76bbf3ca0afcfd67f96a244d6
d00feb0fc8e722e279adbd32bb715a7357a801127afe152f326e113a0e230fcd

HTTP Headers

GET /app/website/css/site.348ed5d4d0fd8c90d668.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"9d2dd98d61deb4cacb57697fb2a1b804"
x-amz-request-id: tx00000000000000f958eeb-00633b21b0-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ca837640b076da822e769273456dfe43
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.470691,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 23170
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js

151.101.85.46

200 OK

5.0 kB

URL HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (11882), with no line terminators
Size
5.0 kB (4998 bytes)
Hash
20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac

HTTP Headers

GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1199601
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1664836409.472358,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4998
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/runtime.5fc7baa50c86dc58bd4c.js

151.101.85.46

200 OK

25 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/runtime.5fc7baa50c86dc58bd4c.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (50011)
Size
25 kB (24725 bytes)
Hash
121447559a6b705a3f2d0d49b4a51959
fb61d388b30d8de94eab33c3720bb27f1bcff4bd
c0ca9945ca5aa448ba0e18ef9f9c63feb8c2e19cf3d294433d53a58780551a6d

HTTP Headers

GET /app/website/js/runtime.5fc7baa50c86dc58bd4c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"3a9d744d15e5cc153562164d8e9bbb59"
x-amz-request-id: tx00000000000001077c2a5-00633b21a2-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.5fc7baa50c86dc58bd4c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 027a418e4770d727a7db22f1fef32c8a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.473276,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 24725
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.85.46

200 OK

26 kB

URL HTTP/2
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2512)
Size
26 kB (25752 bytes)
Hash
234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
age: 395688
x-served-by: cache-sjc10077-SJC, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3873
x-timer: S1664836409.477020,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js

151.101.85.46

200 OK

67 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/vue-modules.7951f3068d0f5401b2c2.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (25511)
Size
67 kB (66757 bytes)
Hash
14ad40c1a43ace9b011a851702c93ecb
e9305b6f3a939584274b15a3f1c4fb5bf10645b0
9d4a8b77438e72d188022397e4bdf11b88fe72bc2c102dc0f9b6568b9fcf1c6f

HTTP Headers

GET /app/website/js/vue-modules.7951f3068d0f5401b2c2.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:13 GMT
x-rgw-object-type: Normal
etag: W/"49ff92c44982a89cf5290643882beb23"
x-amz-request-id: tx00000000000000454d76f-0063292783-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.7951f3068d0f5401b2c2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 4e4de176832166ae2fab2801dbf0f52d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1187777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836409.474137,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 66757
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/languages/en.e54b6cb14aac7516be20.js

151.101.85.46

200 OK

150 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/languages/en.e54b6cb14aac7516be20.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
150 kB (150540 bytes)
Hash
5b0bb19f37897a90a87ddbec76deaf3b
c27f4be55b14f57c8760f313217096125174648f
cab44a9d0f7c8242927d2254a59825051ef75a4f9d3857960c927ce6dfd311b5

HTTP Headers

GET /app/website/js/languages/en.e54b6cb14aac7516be20.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 30 Sep 2022 21:00:46 GMT
x-rgw-object-type: Normal
etag: W/"ea2a5c73385b07248a96d1755aa2b6cd"
x-amz-request-id: tx00000000000000da27eed-006337594f-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.e54b6cb14aac7516be20.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2decba050def7aff2f3b7c4c1f8291eece9fb981
x-request-id: 9acd0f1b3c06c2e4b4e204200d16e223
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 264594
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836409.474361,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 150540
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js

151.101.85.46

200 OK

3.5 kB

URL HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text, with very long lines (16702), with no line terminators
Size
3.5 kB (3514 bytes)
Hash
83197a61107108e5f793f314c5711108
66d3b6b2061a4532fb2fa4cdde9cb0a9ecf4d0fb
a3977aa2368876d57acc53510be1afd7a26aadef119e291b6d74afe912dc7d07

HTTP Headers

GET /app/checkout/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 22:08:50 GMT
x-rgw-object-type: Normal
etag: W/"475364c45fded47d2863a618e7f0062e"
x-amz-request-id: tx00000000000000fe11aa2-00633b5deb-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.475364c45fded47d2863a618e7f0062e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 1295
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.622042,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3514
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json

151.101.85.46

200 OK

317 B

URL HTTP/2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text, with very long lines (1542), with no line terminators
Size
317 B (317 bytes)
Hash
27ee0fccb172f6ed41222a495a62205c
dba3bf87197abf047d477bf26fd8530fa086f194
327fd4f3b36cfc138c5adc30543b90e617a1c1b4eab51f39c9c53f81190e632a

HTTP Headers

GET /app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Thu, 29 Sep 2022 19:39:07 GMT
etag: W/"6335f45b-606"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 355457
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.627692,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 317
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.40.161.235

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.40.161.235:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Av6eqYg/R58ANLjOr1D2cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wNE7GUtQI3/wN8WeeD7x6CfSFik=

cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js

151.101.85.46

200 OK

4.2 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/41630.acde68362a4f85b8242f.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (5681)
Size
4.2 kB (4152 bytes)
Hash
595a9769e28e42b687d05be6e44ed1b1
ab07b4524f8b5c9efcc3c8eb408c015933f87b94
06d08e2bc2373f5fe3e0138ac069b6f9e644a9456ae7832a5d253e5ef7a75252

HTTP Headers

GET /app/website/js/41630.acde68362a4f85b8242f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"e3fdf96b41b353e0c37f1f9918024cf3"
x-amz-request-id: tx00000000000000faa965d-00633b21ae-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/41630.acde68362a4f85b8242f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 26c537d6cf5ccf960051b7d628a90c67
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836410.081560,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4152
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js

151.101.85.46

200 OK

4.1 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/49709.cb80a757b769d7ca4750.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (9463)
Size
4.1 kB (4057 bytes)
Hash
414d8373f1c7696806c33ab7299bf4dd
cd160cf499b27ba121c837c3202b8047ad83fb56
2e291b8826d1f4b2c17be73b5508acc3c8e23de8f83728fe90f3158d5445cc83

HTTP Headers

GET /app/website/js/49709.cb80a757b769d7ca4750.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"85314933e3dbc3506fb76dbbc18b9cb1"
x-amz-request-id: tx000000000000002699229-006324b375-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/49709.cb80a757b769d7ca4750.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: a1e9b5b80d2e42cf7319f9e882b9a88c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1116905
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.085509,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4057
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js

151.101.85.46

200 OK

3.5 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/88857.6e34b40bfa10dd648375.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4209)
Size
3.5 kB (3472 bytes)
Hash
d0c3059bddab007ccee07c57336bba88
e0fc4e1f8089d3bae817d8ec888c151f95fd1402
f3db4c4c1c1698425a2e8a9f9aa971ef14ce88681219b227626a9c3dc1790c7e

HTTP Headers

GET /app/website/js/88857.6e34b40bfa10dd648375.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"9463f4be6c8d7a23f1a7f6a702ffedac"
x-amz-request-id: tx0000000000000026990a6-006324b373-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/88857.6e34b40bfa10dd648375.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: b9fa93b1b68f4f1d898db568f1582457
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 585056
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.086527,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3472
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css

151.101.85.46

200 OK

395 B

URL HTTP/2
cdn3.editmysite.com/app/website/css/home-page.330abfc8608ec69de0f5.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (857), with no line terminators
Size
395 B (395 bytes)
Hash
8d7fcccab55897af77b9e87a64f57b20
8fabb83941907077788025f05cb325c0c7340794
ca291141827c7605d3815f5bd0b2fab261f6f815d9b5661dfeae7153d40bc346

HTTP Headers

GET /app/website/css/home-page.330abfc8608ec69de0f5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"caab02dd387044f4022e40ee2c3b28f9"
x-amz-request-id: tx00000000000000a8b1be9-0062d074c4-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 995f38829174b97993a0ed18090ad16d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1807113
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.087760,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 395
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js

151.101.85.46

200 OK

6.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/home-page.44e252f4ea49e6c88e3b.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (19908)
Size
6.0 kB (6026 bytes)
Hash
f201fa985a8ebdce48c806e4f758582a
e03ed9757e25fd1f7649d2402623a8ba1f5b400b
9453697232ae9df8797a4aec6e547c62c95866ca5597a2feeefc2493eb8c48ab

HTTP Headers

GET /app/website/js/home-page.44e252f4ea49e6c88e3b.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Sep 2022 16:40:02 GMT
x-rgw-object-type: Normal
etag: W/"a9917ab68ed49d660f45db725ec853af"
x-amz-request-id: tx000000000000006aa3142-00632b3ebb-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/home-page.44e252f4ea49e6c88e3b.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: 5f8e79841a71b39728ed4464187af8f4
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:30 GMT
via: 1.1 varnish
age: 1057854
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836410.088316,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6026
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e75acbc46a473afe3056a696e60438df
7501518104d839b14d56b5d2930fb146aec4fda7
5a3322de554eaeb645a6074599992195eb8124605aa73d1c9e289419f0769bb1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 22:33:30 GMT
Last-Modified: Mon, 03 Oct 2022 21:34:35 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NEuE5wz0bk0nEGkmaqHZ9VW4j_1IwzuSrgnQZETgWQMl_7E4vBD2DQ==
Age: 3535

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e75acbc46a473afe3056a696e60438df
7501518104d839b14d56b5d2930fb146aec4fda7
5a3322de554eaeb645a6074599992195eb8124605aa73d1c9e289419f0769bb1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 22:33:30 GMT
Last-Modified: Mon, 03 Oct 2022 21:58:19 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qm0GLzdyUuR1L_jnRHajrZo3jSx3g2hySVeg2jhJDEF3-ZLJkxVt4w==
Age: 2111

btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400

199.34.228.39

200 OK

3.4 kB

URL HTTP/1.1
btconnect-109798.square.site/uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
3.4 kB (3350 bytes)
Hash
4a9463d86ebe0fc07b2c1d61117e6af2
ef0130f409c753d77b6f31878ae8537671aee48a
9288de1772ae84636ca3c486fe2a17fb809a57e52c045be5838500a00e207181

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /uploads/b/847b70863f9a46fb4771f73a6ae6ecbd4226478940d2a1147de8afc904c672ff/fffaa_1633689950.png?width=400 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/webp
Content-Length: 3350
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "pUVJox2pbF5IewxCJptLe0qIUOwSEzRRyBLBDBPyhlw"
Fastly-Io-Info: ifsz=4132 idim=224x225 ifmt=png ofsz=3350 odim=224x225 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx0000000000000101f6f8f-00633a4912-c695612-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z458d
X-Storage-Object: 458d0a97c28699841111023901d9badf01a35ebd529bcd2c02871ae61e9a36f8
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 1318
X-Served-By: cache-sjc10038-SJC, cache-pao17470-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1664836410.240579,VS0,VE1
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn50.sf2p.intern.weebly.net

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.235.202.207

200 OK

0 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.235.202.207:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://btconnect-109798.square.site/
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 03 Oct 2022 22:33:30 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2

sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7

35.188.42.15

200 OK

2 B

URL HTTP/1.1
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP
35.188.42.15:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://btconnect-109798.square.site/
Content-Type: text/plain;charset=UTF-8
Origin: https://btconnect-109798.square.site
Content-Length: 417
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://btconnect-109798.square.site
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.235.202.207

200 OK

2 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.235.202.207:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1994
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 03 Oct 2022 22:33:30 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 03 Oct 2023 22:33:30 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]

199.34.228.39

200 OK

894 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with very long lines (894), with no line terminators
Size
894 B (894 bytes)
Hash
425945c21c361516d57dcfa68f2adfa0
fd1e931b775c396cd3f02d5bc13600e305c5a93d
e49bdcc237529abb3baee5c2ea30e106e2a9b05b78fcbc4542a271e435d38db8

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Content-Length: 78
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn115.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 894
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6281
Expires: Tue, 04 Oct 2022 00:18:11 GMT
Date: Mon, 03 Oct 2022 22:33:30 GMT
Connection: keep-alive

btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg

199.34.228.39

200 OK

1.7 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/mastercard.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Size
1.7 kB (1657 bytes)
Hash
1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001ac6ae7-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: d22fd6d0ef4446e88e5dd5e4e652697e

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4151 bytes)
Hash
24a4a122273ef9f772852031eb13114a
c20f1fac9020eb4bd6c84583f73872979639b991
8e1ffbed5f156637ed2f22e81d03f6d85eff0c28237c1639ea5f977e92ee7b70

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4151
x-amzn-requestid: f709a11e-cbea-4965-8502-94ddbd8768bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvSF3YIAMFdow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-29bfa31d51e8f60b38136dba;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iHjSrLdzntzVnJ-qaRf834nLglcKXY1cTgLY5VcCyKtp0lwN2gGnnw==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 2950
etag: "c20f1fac9020eb4bd6c84583f73872979639b991"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7df28993-57e6-4e7f-9751-93778578bd1e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10595 bytes)
Hash
6258b8768ba4c3edcc049c494dac733a
40e4337611c74e26efbc53633ba1a9ac04d9ae81
b170aaabbd17b712ed861f5e1d13ad2ff3604b47e9ec833077caeb1199f44d08

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7df28993-57e6-4e7f-9751-93778578bd1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10595
x-amzn-requestid: 7cc6c91c-4dfc-4c17-b27c-5c0eec4a390a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqdOHTzoAMFYdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5787-11525116257b72eb382ecefa;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qglxUK18M0WVvuSzN-pkwoIagT-hMmp_77qKAVaGq-3vJ4gwwsRzdA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:14:26 GMT
age: 1144
etag: "40e4337611c74e26efbc53633ba1a9ac04d9ae81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TVz3oiy-Z2r9lGFDgsnGNxotvvAPeOaa7LMzqs432QjZpZo-PNt1-g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 64239
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.8 kB (2761 bytes)
Hash
fb7d0bdcd7cf60e39ee64d92f5694384
0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f
a6dd1fade6b47e539dd42ed07d2cf58179db10fe946809f201889a1f9c4ef282

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2761
x-amzn-requestid: 00090151-da40-48e8-98f0-a0c579fe6d1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI_EgdIAMFc0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556c-06ceb1750213c44130848bf2;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tnLSKunYCXPQiG357F3pxokcn8BJDjBxvx8MmQo2XwY7_eCzD7ZlIw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:31 GMT
age: 2939
etag: "0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d0984d7-fe4f-4f96-9f0f-17e0197a5cb6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5857 bytes)
Hash
78caa2bb8e856110416bc85ed2420d20
1d90e98d3666fc8618130eac15972d3a08addf16
5175905bdbcd0a325ff666148a77503f14d1922d826ad14a9c3d09846d77dff5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d0984d7-fe4f-4f96-9f0f-17e0197a5cb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5857
x-amzn-requestid: 51f3a938-30f6-418e-970b-439bdfbb7c2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHIAIAMF6PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-6d97d5ff3c3589ee1e900a3b;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OModa8qHXEimXsJhr1DiYifYbFLgI-yMvAaKZA2SsRyU1N5CWwoVOg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:16:34 GMT
age: 1029
etag: "1d90e98d3666fc8618130eac15972d3a08addf16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4858 bytes)
Hash
6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 2950
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates

199.34.228.39

200 OK

70 B

URL HTTP/1.1
btconnect-109798.square.site/app/website/cms/api/v1/users/139428721/customers/coordinates
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
70 B (70 bytes)
Hash
9752b06c768724a72741cf9388713596
3c05993fc47e53d1edaa9c03779565a7753f3a61
1d97b677c782c9ae57c8b4dcb6afd88a8068ea3cd133a00cf1050dfe0b4d835c

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /app/website/cms/api/v1/users/139428721/customers/coordinates HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:30 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D; expires=Mon, 17-Oct-2022 22:33:30 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; expires=Mon, 17-Oct-2022 22:33:30 GMT; Max-Age=1209600; path=/
X-Host: blu75.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: a8dc5cef060d7224d970e33508bbc448
Content-Encoding: gzip

btconnect-109798.square.site/static/icons/payment-methods/applepay.svg

199.34.228.39

200 OK

3.0 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/applepay.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Size
3.0 kB (2986 bytes)
Hash
c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001a5c248-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: a357db0442cca67c349a33568ef581f0

btconnect-109798.square.site/static/icons/payment-methods/visa.svg

199.34.228.39

200 OK

2.2 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/visa.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Size
2.2 kB (2247 bytes)
Hash
98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx0000000000000345db325-00631274b0-bfe36ba-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn41.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9dcd196fdaf0d2d4e853a771663c571b

btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg

199.34.228.39

200 OK

3.1 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/googlepay.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Size
3.1 kB (3115 bytes)
Hash
2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001af98ca-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu133.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 16819ddfa74ffa242d998366be06b809

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]

199.34.228.39

200 OK

201 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
201 B (201 bytes)
Hash
bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0=
Content-Length: 83
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn135.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg

199.34.228.39

200 OK

1.2 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/americanexpress.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Size
1.2 kB (1206 bytes)
Hash
2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001ae675d-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9404ee3d774d456851a4e591c3a23cdb

btconnect-109798.square.site/static/icons/payment-methods/discover.svg

199.34.228.39

200 OK

3.1 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/discover.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Size
3.1 kB (3087 bytes)
Hash
9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001ac6a0f-00628473f9-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu75.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 76d0e74dd2c541acdeb8dbc4a81deff3

btconnect-109798.square.site/static/icons/payment-methods/jcb.svg

199.34.228.39

200 OK

3.9 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/jcb.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Size
3.9 kB (3876 bytes)
Hash
32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001af9a36-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: ac300f5589af74e72c592c1d396e39e7

btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg

199.34.228.39

200 OK

1.4 kB

URL HTTP/1.1
btconnect-109798.square.site/static/icons/payment-methods/cashapp.svg
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Size
1.4 kB (1394 bytes)
Hash
4d9798d0983422b1931dbfb934e04144
b70cb2e3822c77177ba56a351e309d5394263105
880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /static/icons/payment-methods/cashapp.svg HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6Ik96SzlzZUZCeTA2YUh1Sm4rNFdhc2c9PSIsInZhbHVlIjoiTzNCQzdtYkNWVjhEazQzVHR3cGptMW1yNDFJRWZ6VkZVeVNsa1NXd2I2NjFrT2hEYm5IaWhBQmRYYnhNQ2J6TVhoVnFjMEdkUEQ2RVFhMUE5aG9udlNuXC9FWk1lcFVDY1hHdnowcFwvazJcLzlsdkxOV3lBbGhtQmRPc3R6d0lCaUEiLCJtYWMiOiIzZTg1OTg1YWE3NjliZTI5YTEzMjM5ZTFkNjQ3NDJjYjBmYTQ1MjBjMGIyN2E2ZjE3ZmQxMWM2OGU1NDA2OGM1In0%3D; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:30 GMT
Content-Type: image/svg+xml
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000db9882a-00629614f5-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn41.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: af229e40d0aca47c288ca4c157f2cdc6

btconnect-109798.square.site/square.ico

199.34.228.39

200 OK

6.5 kB

URL HTTP/1.1
btconnect-109798.square.site/square.ico
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
6.5 kB (6518 bytes)
Hash
d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:31 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001ac6ae5-00628473fa-b9fbc64-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu79.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 7c44c9b25dc4cd55dc3f3d4d6a9a17fd

btconnect-109798.square.site/site-icon?device=ios&size=180

199.34.228.39

200 OK

1.3 kB

URL HTTP/1.1
btconnect-109798.square.site/site-icon?device=ios&size=180
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Size
1.3 kB (1299 bytes)
Hash
cf3a9fc9da142c7093ed2cd642a545db
630165f76a5e26e7bfb9db0326e8ac62ce69345e
14d2c0d565f8995ac59174d41f4b469e700dc21dfdb1b72cbca43a5c1bdf0503

HTTP Headers

GET /site-icon?device=ios&size=180 HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836409.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ik1mRmpYWFVXZDBcL281QnArcGlpck9BPT0iLCJ2YWx1ZSI6ImttbnFEa1dCRTkyU3pUSTN6WGpPZzhWK1VyaDVTOXhJYXJGQWhKcXo5eGNjNlwvYjgxTE5RM3ZaSWdBckh2Ym1mSkF1aVRzd1ZQV1dZQ1VHWERJbzN4XC9ac0Z3U21mTW5Ka3ZXTjdLVlQzTUJLWjdhSCtZdTQ1Mmp0M2N1SDdKSzMiLCJtYWMiOiJkN2EyYmQ3ODI5M2JmY2M4ZDkxNmIxNmEyMTcwOTRmMDVkY2VlYjQxZGE1YjM1ZDlmMDI2MTk5NDFmZjJkNWIyIn0%3D; XSRF-TOKEN=eyJpdiI6IkNUcWtqZ2VWZmw4XC9QRHpRNWpGTjd3PT0iLCJ2YWx1ZSI6ImJPYzN3T2Z4VHJvMloyTUJWTVRjZ0ZjWjlwc2poVHQwN3o4a1Fka0xaczBMMGhFVjgxUWkrMHNvM0hXZUlYU2xJMmhhMUdGUUladVpkaG9lWk15OURuOXRSQlBmSjVlNlNUaGJwUzZwZ2diUW5NNk1QdzNQcVJuTXEzamVTWkR3IiwibWFjIjoiYjcwZGYwODlmYjJjZDI1OGIwMDJlODc4MmMyYjlmM2EzMzZkZWFkYmUyNTg2ZjVkOWVhY2QwNzkwMDU1MzJjMiJ9; PublishedSiteSession=eyJpdiI6ImswNTRYVUFLeVNKcDcrbFdSV0tRR2c9PSIsInZhbHVlIjoiaml1clNyY29WcllUcWwwM1o4TFpFSnZQTk9hRW5kUEpWWGI3b0ZqNTFHc0dKbWlibWRTR1E4QVVMcTllQ0YxdG11VzRBcTJFaFJUbUFCZ2dNejF5Z1ZpNmhQMzlUTklSbmNEMVhwUjBhY3hpZUpkb0lVaXF3ajM3cUVvdU9oRzMiLCJtYWMiOiJjMGIyMDU5NmUxYmQ4N2M4MGQ5N2IxYmJhYmRkMjFiMWNmYjcyZTg0MTRjYTY3NTQyMmJjNzI2MWI2NzU5ZTU2In0%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Mon, 03 Oct 2022 22:33:31 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; expires=Mon, 17-Oct-2022 22:33:31 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn64.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 62a1861b71fc90276e3ae25f6656100e

cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css

151.101.85.46

200 OK

146 B

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Domine/Domine.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
146 B (146 bytes)
Hash
63e426ca2fc1f525e07549acbdb03c86
de204bf76765003228040392b785be8a4635f71e
7cd7ad8d4405b131406a53408c0ed82f5d0f5b8b0e715f9cff32321ecb11b81f

HTTP Headers

GET /app/website/static/fonts/Domine/Domine.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:05 GMT
x-rgw-object-type: Normal
etag: W/"f859875369df59480c1798e4b7f47bac"
x-amz-request-id: tx00000000000000b94e242-006332c205-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 0d075c7652c336288aad5158c9b3b49a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 494373
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836411.457351,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css

151.101.85.46

200 OK

184 B

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/Open%20Sans.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
184 B (184 bytes)
Hash
45eb1d539e7e3713ba21d3b762495241
a3ab579ddcbf6844d185c3a2b7e21b90e03fc8f0
fd87e35b1c208ed7ec8a1ff7b7a992113993b930cbffb505211571bd61897221

HTTP Headers

GET /app/website/static/fonts/Open%20Sans/Open%20Sans.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: W/"5a911d826579cde6887d45195f330549"
x-amz-request-id: tx00000000000003d2c0ff7-00631fdb2b-c03521c-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 19d42d5ea27796182ce421f67807d86b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1804304
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836411.458832,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 184
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js

151.101.85.46

200 OK

7.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/66828.7a1f2b6b3048c8a9abed.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (15920)
Size
7.0 kB (6994 bytes)
Hash
aeae4740ce9ca44afb45d241a6d7cf02
63c70a7ccc0218c61cf82048d8d1c9c6803ce1c0
73486eccc5e108672e81c0bd003e335f5df16d3e054ae3926cb11243094ebb69

HTTP Headers

GET /app/website/js/66828.7a1f2b6b3048c8a9abed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"cfc68333314856ff257312138eb8e7d0"
x-amz-request-id: tx00000000000000bee0010-0063331d49-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66828.7a1f2b6b3048c8a9abed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 8106d52edec8e55a0681b3b724dce240
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542120
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.484112,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js

151.101.85.46

200 OK

10 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/9458.dfb54a3d2009837dfc1c.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (17020)
Size
10 kB (10254 bytes)
Hash
6d29cec60d1053f23cf97c994eb73a45
a29a50007be195639b28438e3e8fac66deaf7fb4
88645a58ed4ff84af06d664587985423e46e68a335ac68dd42db65fe011417d7

HTTP Headers

GET /app/website/js/9458.dfb54a3d2009837dfc1c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"74b08c80795cf6c4c2cd8979b88a585c"
x-amz-request-id: tx000000000000010617a82-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9458.dfb54a3d2009837dfc1c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 68cbcf8561fe2c55fbd959bb2eae33d9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.488432,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 10254
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css

151.101.85.46

200 OK

3.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/navigation-mobile.b78212d8d37b56895f14.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (10021), with no line terminators
Size
3.0 kB (2999 bytes)
Hash
0592b530cbf990977268f19f0ce0c027
e8a33134a639a676dda386f796b21bebd8a90511
4e0b9f188663c9d24bc3c665366dba35e2f46337c97ffb160de58ee765664292

HTTP Headers

GET /app/website/css/navigation-mobile.b78212d8d37b56895f14.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"8857de04e5bf7fff2d6541c8abb6106d"
x-amz-request-id: tx00000000000000bd3e41c-0063331d56-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 5a7c64583387578e4dd9db8ead97b0e7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2403
x-timer: S1664836411.488996,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 2999
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js

151.101.85.46

200 OK

18 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (30694)
Size
18 kB (18200 bytes)
Hash
324d82707a7157490d4e1a23ab3d0915
a2b2be87328fa1894aefeb42593106a7aad321db
f09187714bc26344c2f06bd8896fb0a4c3779d4fbf0486035381c837debf2fb3

HTTP Headers

GET /app/website/js/navigation-mobile.4492aebe016a3cf84ad3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"c42f7160d4813844aa9c3d1d52fe51f1"
x-amz-request-id: tx00000000000000f7bbdfc-00633b019c-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.4492aebe016a3cf84ad3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: cd8d406ab1d4b3d5e4b28614329a36eb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.489703,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18200
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js

151.101.85.46

200 OK

4.3 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/89814.7c33af088cddc4109e43.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (14043)
Size
4.3 kB (4338 bytes)
Hash
178758f917347be3cc16039638a3a080
1ebcaccefe2a24d321638fde0988ebba235e18df
e0fb3cf963ea543c17b0ea8d0ead49e0c389774758d0a1036098dfe0a22b4e44

HTTP Headers

GET /app/website/js/89814.7c33af088cddc4109e43.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"06d79aaa6a4d188323f29ce9534ab179"
x-amz-request-id: tx00000000000000bf2b936-0063331d4c-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.7c33af088cddc4109e43.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 46f4336f14f055330c9ccccabefdc994
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.498231,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4338
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js

151.101.85.46

200 OK

7.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/63078.d8b67652f8a80e7ebc30.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (16366)
Size
7.0 kB (6994 bytes)
Hash
2cac664b5fcd18937498e65fced2cfb0
86a9c74dc43e77fe2e907dec4bcadd06e12e1238
61af8efb689db443c0cf4beec37d6ed8005fe8a15d5689922bf3f8a2c5282161

HTTP Headers

GET /app/website/js/63078.d8b67652f8a80e7ebc30.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"9381a58af2c4d899bf85a5d6dabfff07"
x-amz-request-id: tx00000000000000f90a704-00633b019a-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63078.d8b67652f8a80e7ebc30.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 583d0826dc59f81dced7357aba1f7027
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836411.499677,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6994
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js

151.101.85.46

200 OK

8.3 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/3464.0e011b7da28b4dcc50f9.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (22834)
Size
8.3 kB (8310 bytes)
Hash
59216768b8576418d667cecaa1b57c9e
7e299a69e55515b1e89f7f0e08d14917c360dd8f
1f1ad83672f2819c2b76fb5d8a02c0b483a77a1e781760064c92c40f9993fa0d

HTTP Headers

GET /app/website/js/3464.0e011b7da28b4dcc50f9.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"d1fff5f103d924ecf44e37f414dd7644"
x-amz-request-id: tx000000000000010617a85-00633b0184-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/3464.0e011b7da28b4dcc50f9.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: adf510b1c3dca3e607c242fdb0258334
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.500476,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 8310
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css

151.101.85.46

200 OK

5.1 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/69151.1d587d349a2e30b7c539.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (20997), with no line terminators
Size
5.1 kB (5080 bytes)
Hash
cb23449d0e7a6f85177e66f9e4cb8b97
e6698cb203cbcc6490b181c9324ebc0d9947133b
2dd236f452096dd4066d3c457d91fa9d9304065bd99ef42eb1bd39071655f3cd

HTTP Headers

GET /app/website/css/69151.1d587d349a2e30b7c539.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"38535bbed5cc9591643d0bfd54dff7cd"
x-amz-request-id: tx000000000000010818a10-00633b0186-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 4b55aa9ca5ca777e0f48a2815c7a79b5
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.502651,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5080
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js

151.101.85.46

200 OK

9.8 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/69151.43baa48b8e2696afbaee.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (20536)
Size
9.8 kB (9796 bytes)
Hash
e5f819fd2471f0d39f40a424b6e738c3
025955df8e6f7816bdec557210b0b6e2569a56a9
80886528d1a068690cab927c342713be1cf493123535c3560909ffd0c85dd879

HTTP Headers

GET /app/website/js/69151.43baa48b8e2696afbaee.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"cc04044592d2e34cc614fa22b6ac2f54"
x-amz-request-id: tx00000000000000f7bb41c-00633b018f-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/69151.43baa48b8e2696afbaee.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8872d53f1a9426ac16d95767d7b23df3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.506845,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9796
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js

151.101.85.46

200 OK

6.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/28134.77d6819aef6675b6d037.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (16809)
Size
6.0 kB (5953 bytes)
Hash
84c5d286b0f8559fa7dfece05a6d470f
70c6ad1f4fdbe1a000a2456e8c7f1447714b6f79
d14e896d3d64286851790eb7627c34757fdd5238c5fe28d4d6bd35176d9551bf

HTTP Headers

GET /app/website/js/28134.77d6819aef6675b6d037.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"7b6032abc58def0599a6d34df6d728be"
x-amz-request-id: tx00000000000000cb85c8d-006335dc37-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28134.77d6819aef6675b6d037.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 410c1612457aa0c225a78004c5722c86
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1664836412.515736,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5953
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/cart-1.35b50145c690757d9bfc.js

151.101.85.46

200 OK

32 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/cart-1.35b50145c690757d9bfc.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (9219)
Size
32 kB (32310 bytes)
Hash
c7818639c63c41b32e09b966e527cce7
9b3bb279647bcd226e42d410346b05c368915390
31ee56ec4407e2241f8ca4c704629dd3329a62906005afa9ca7620657064b885

HTTP Headers

GET /app/website/js/cart-1.35b50145c690757d9bfc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"c0371b35c318b32cea310567eef29314"
x-amz-request-id: tx0000000000000107b8512-00633b21b3-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.35b50145c690757d9bfc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: ff2932cc2546c2605748de185c7d37d7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 16776
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.519277,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32310
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js

151.101.85.46

200 OK

5.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/28962.d18168a4fef01bd4d15d.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (13912)
Size
5.0 kB (4977 bytes)
Hash
493704f053d7437bdc89df0882cf81ed
084f2f1d43b5210e42f32e079008988d4fe8d2a4
a6cad1c76c4e7223ad170384bcd12a4bf47fc58544aed550287c67d7169c2255

HTTP Headers

GET /app/website/js/28962.d18168a4fef01bd4d15d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"370799bbaeff3ba460557bb19cbe82fd"
x-amz-request-id: tx00000000000000bd3d7a9-0063331d48-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/28962.d18168a4fef01bd4d15d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: 82213c86f96f032b754b4908844d5e55
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.533754,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4977
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js

151.101.85.46

200 OK

5.2 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/31083.4f8bf72e65310781cdc3.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (12428)
Size
5.2 kB (5225 bytes)
Hash
c2c1ee3bb6fdfd4cd2e8dd94691ed5fa
8cba707131ee4535b7587d21dab4a372ff3d315f
e46b600635d77073913fe13797f1ebbd3e769cf1021833c503d1acaea6686cfc

HTTP Headers

GET /app/website/js/31083.4f8bf72e65310781cdc3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"779d3ba5eba2e36c5e1e5214df356c5a"
x-amz-request-id: tx0000000000000108194d0-00633b0193-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/31083.4f8bf72e65310781cdc3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 3c476c4d944b58a3a179c7150d72d74a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.569120,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5225
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css

151.101.85.46

200 OK

4.8 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/62651.637819b958113e0a7acc.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (18914), with no line terminators
Size
4.8 kB (4794 bytes)
Hash
9c48deacca63997a018adc4d9057af6c
9a7a3c896c94810be3967b546e1c28deb945ebc3
32d2e1cbe1c50b9a78bf0d1c45d52b2354f43f2c60f7b4f0f6896e60467b0ad0

HTTP Headers

GET /app/website/css/62651.637819b958113e0a7acc.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"224ec22bc5a895e36f855a2be31ecc0d"
x-amz-request-id: tx00000000000000bd3d858-0063331d49-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 24739b76cac0c2bc67311f83cc8814b3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.569230,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4794
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js

151.101.85.46

200 OK

9.4 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/62651.3b34ab6bb4023a44208c.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (24677)
Size
9.4 kB (9367 bytes)
Hash
251da6b85be6e25a29fac83d142e17a1
91db8c481d50f2515091ec4273f11bac20c91846
325457af8d2eafe9bc1e9e4ed949860ea388c180e687a5871a8ee79cd6ff0a64

HTTP Headers

GET /app/website/js/62651.3b34ab6bb4023a44208c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"ae704f34826303439556045a14365f92"
x-amz-request-id: tx0000000000000106180e5-00633b018b-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/62651.3b34ab6bb4023a44208c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: e0208ad9de0de3e9fe6f80d5b5bd11ff
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.570385,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 9367
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js

151.101.85.46

200 OK

3.9 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/33182.694277c0f3aea942d6b4.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (10185)
Size
3.9 kB (3906 bytes)
Hash
ba2aca810f7b8482853e7d5d40b62776
a4b81ae91f35d9cff43145e40be912078f5d2eaf
cc34afd70a0bb32291a2be71f92beb22d281961649772b806d997511ab51a0da

HTTP Headers

GET /app/website/js/33182.694277c0f3aea942d6b4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"fc698b0eddcf2e0d002759d3f7c1250a"
x-amz-request-id: tx00000000000003dbad805-0063210df8-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/33182.694277c0f3aea942d6b4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: dd6054965014ba80d9fd7e89677c34d0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1197627
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.570478,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3906
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js

151.101.85.46

200 OK

13 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/19384.efee8b71a6a648cb9204.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (22743)
Size
13 kB (12733 bytes)
Hash
e1a4d949b3ae5666ab4ff4eea75bec1e
16aea1549ce0a775a25c3427a39c000f308cb69b
7a751fa9bd7f77c6107ae846a49ed1ec7326de269c910a483ff88c7d0469499d

HTTP Headers

GET /app/website/js/19384.efee8b71a6a648cb9204.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 19 Sep 2022 18:33:20 GMT
x-rgw-object-type: Normal
etag: W/"aa1ab652fd9758b5b518b2a9fa053202"
x-amz-request-id: tx00000000000000c0e601f-0063336316-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/19384.efee8b71a6a648cb9204.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 571a7550942f3e57c60a8658e879426b112f1dc1
x-request-id: fc502d8e34c167131b5c714a8eed0a1e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 524325
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.511280,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5005
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css

151.101.85.46

200 OK

5.6 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/header-4.1541832b8fd135e7fdac.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (22082), with no line terminators
Size
5.6 kB (5644 bytes)
Hash
f44a367ff6f9cef7503e149284dda04e
64eb1ace475f0233b433fbdeaa899e342a1598f7
c12b02a74aaa8eb5569f06c3ab19a94901ce124edf917595d0926e327193e1af

HTTP Headers

GET /app/website/css/header-4.1541832b8fd135e7fdac.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 20:52:07 GMT
x-rgw-object-type: Normal
etag: W/"b3697b8d5ccf39c18678e88f0e95670f"
x-amz-request-id: tx00000000000000b2e563e-00633362e7-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: 9e93f5b4898e059b6938a50a5d13f035
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 523992
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.580800,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5644
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js

151.101.85.46

200 OK

29 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/header-4.44530ebe5d0024415615.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32737)
Size
29 kB (28740 bytes)
Hash
02e82ade0a46bb828c8e21c1aa4388ec
049fe9154fc44fa0fd26325c3d3a0ef2404e7564
3af9294f31163424c81cafd5205a8eaac32051fb17e2d44f137f7a996030117f

HTTP Headers

GET /app/website/js/header-4.44530ebe5d0024415615.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:05 GMT
x-rgw-object-type: Normal
etag: W/"d7457d729041075183ddf5da7948ee8c"
x-amz-request-id: tx000000000000010618927-00633b0195-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-4.44530ebe5d0024415615.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 8cd1b1c3afd81b74199cf28fd2b0cc5b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24634
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.580907,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 28740
X-Firefox-Spdy: h2

cdn5.editmysite.com/app/store/api/v23/editor/users/139428721/sites/790344227800140344/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1

151.101.85.46

200 OK

1.5 kB

URL HTTP/2
cdn5.editmysite.com/app/store/api/v23/editor/users/139428721/sites/790344227800140344/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
data
Size
1.5 kB (1466 bytes)
Hash
669b500fae061d89b31600f7c3401a52
00122679f5cf8c1e10343201432cc45bcbdae574
1db0a04d4b476ad42ad5684047950d48a40d21ba5050a58c4a33a548086c5f3e

HTTP Headers

GET /app/store/api/v23/editor/users/139428721/sites/790344227800140344/store-locations?page=1&per_page=100&include=address&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: no-cache, private
etag: W/"a50977b7e57c7fd2cd59323140273d34"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: 46b8cab6eb58d84dbb2c061204cb322e69087e20
x-request-id: 49cb5ae5d52776b848e4faab32681b18
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 03 Oct 2022 22:33:31 GMT
x-served-by: cache-pao17466-PAO, cache-bma1678-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664836411.923133,VS0,VE390
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js

151.101.85.46

200 OK

3.6 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/26267.78a7b8e043fd38ce5bed.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (8710)
Size
3.6 kB (3577 bytes)
Hash
427c7fe2b3d549712100f6820b08efbd
c229680202f32a5d973fd8f91f4be59b9c050e28
d9ad555d0cc050b5522d23427dbb81b4be0bb3182e979e53359916e144f5d901

HTTP Headers

GET /app/website/js/26267.78a7b8e043fd38ce5bed.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:04 GMT
x-rgw-object-type: Normal
etag: W/"da9c41584ada728a23d91b0505f40439"
x-amz-request-id: tx00000000000003e0b9c83-0063210df5-c03521c-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26267.78a7b8e043fd38ce5bed.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: f26bc6b476269279cb2711ab775bd8cd
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1188335
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.600344,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3577
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js

151.101.85.46

200 OK

13 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/91272.1c5d597f56a343a39169.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (18330)
Size
13 kB (12604 bytes)
Hash
f2397a8edc8314d2ab89af5bef811d57
b88f044f6f2bbc9cdbdbcd6ac2a6829f0fc99f29
bf36d69af07442ee1664ede9c7069461ea97a92e299fc1ba6284c4b332e58ca0

HTTP Headers

GET /app/website/js/91272.1c5d597f56a343a39169.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca7b2a99099a151b51b4c15d1d2bc11"
x-amz-request-id: tx00000000000000bd5f4c2-0063331d4c-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/91272.1c5d597f56a343a39169.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bcc8579caa22acb61c992573b277d224589c7db6
x-request-id: dc38a1708fb97f3ab8290ddcf3befc5e
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 542119
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627178,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 12604
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css

151.101.85.46

200 OK

6.1 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (6231)
Size
6.1 kB (6081 bytes)
Hash
720b76d114220c6921ffd7271317bf07
5d9294103532ae88683660cc0a01f95197e848ba
dc9e9ffec23369ebe881ca72c78d0f8cd52674fd37bbde690705e8213a04574e

HTTP Headers

GET /app/website/css/cart-1.d2c56fcd0cdd3a08f7f9.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:21 GMT
x-rgw-object-type: Normal
etag: W/"8b4ceee22aa43054751ec463b5144296"
x-amz-request-id: tx00000000000001077d03f-00633b21b3-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: d6ae832b1c28c118f59abbbc4abc5b2b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 16776
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.516944,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5220
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/contact-us-1.07fc26c6091d2855dfca.css

151.101.85.46

200 OK

4.0 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/contact-us-1.07fc26c6091d2855dfca.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (16271), with no line terminators
Size
4.0 kB (3992 bytes)
Hash
509ea9783cd47294e65eb3255b195916
5d7a757d060439a226cf3756de5808109a49d865
bc65e7884a9ae3d1cbe3a9a0f6c3cdef710fea487611f4753767df8142e21ec5

HTTP Headers

GET /app/website/css/contact-us-1.07fc26c6091d2855dfca.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"bb5294ffcb780c3463e560b110320d49"
x-amz-request-id: tx00000000000000bd3ed68-0063331d61-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 3b020e211bd6d2f1b15303a68998cd29392f1e7c
x-request-id: f693fd640aa2b192200fbdcccd6f183c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 515970
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.627692,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3992
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js

151.101.85.46

200 OK

16 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/584.caaf0ad96373138bf188.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (22595)
Size
16 kB (16069 bytes)
Hash
5a6cc2d02a3220f2d0c07ce8afe00735
a1f15e6a23aa71b8f0a554a7408373942c314238
de865be6736e5389d52ca365e09dbd414fdceb6a753c8b5dec34a650b8ff2a5a

HTTP Headers

GET /app/website/js/584.caaf0ad96373138bf188.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:19 GMT
x-rgw-object-type: Normal
etag: W/"1f1a99ca1c046e3862230cac549e8225"
x-amz-request-id: tx00000000000000d87dd9c-006335dc24-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/584.caaf0ad96373138bf188.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 8e046d250cae6802ae7fc9a80c3a3dea
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627334,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 16069
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/contact-us-1.a714c12e8ec682e40ee6.js

151.101.85.46

200 OK

809 B

URL HTTP/2
cdn3.editmysite.com/app/website/js/contact-us-1.a714c12e8ec682e40ee6.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1661)
Size
809 B (809 bytes)
Hash
53650ad32ed3e3c578a1b630189dd1e9
775141e2e960b814e0074e0d5b7031e521c22111
11994ae02e77098450d3d08168da07b3b4c36c79912fe452b6a55a84487e9069

HTTP Headers

GET /app/website/js/contact-us-1.a714c12e8ec682e40ee6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:08 GMT
x-rgw-object-type: Normal
etag: W/"b222db33ae5504b202e445c37b055cc6"
x-amz-request-id: tx00000000000003d9c24dc-0063210e0b-bfe27ea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/contact-us-1.a714c12e8ec682e40ee6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: 4b2b6539c9930ad3d54f9db2f0441005
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 597355
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1664836412.627991,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 809
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css

151.101.85.46

200 OK

6.4 kB

URL HTTP/2
cdn3.editmysite.com/app/website/css/66670.b694d05e69f75f469d70.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (25632), with no line terminators
Size
6.4 kB (6366 bytes)
Hash
b99bc0745e6201b918c78b0bf8e9de7b
e9fb8a3d15b933ae2f822db2e66fcc1712f7e2cc
729fcdb927673a30d1f50c66cae501b20f88be96cdecdd12784bfb0fb208bd05

HTTP Headers

GET /app/website/css/66670.b694d05e69f75f469d70.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 27 Sep 2022 15:55:20 GMT
x-rgw-object-type: Normal
etag: W/"b3b4a5077e6334122ff50105eec7420c"
x-amz-request-id: tx00000000000000f9ed065-0063397800-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 81e76d581d20b11b05218010697e576d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24649
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.627972,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 6366
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js

151.101.85.46

200 OK

14 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/66670.a7a5bec786b65c6f06c6.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (16522)
Size
14 kB (13819 bytes)
Hash
83ee6769d19ebb77088fae2e871c6183
5f690d95fd04d9cc3b9216fa0b21637a4837479f
12113db4803a5fb421bb0dc3941a52159ad74ceb069f6fd050aa2e0c327e1921

HTTP Headers

GET /app/website/js/66670.a7a5bec786b65c6f06c6.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 15:35:04 GMT
x-rgw-object-type: Normal
etag: W/"35476ff365f33e157ca81acd30b616b4"
x-amz-request-id: tx00000000000000f9098a6-00633b0189-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/66670.a7a5bec786b65c6f06c6.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: 67863989620f35dba9e32f83e58603ac
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 24650
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1664836412.628553,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 13819
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/footer-5.6104f09d4a17484472e0.js

151.101.85.46

200 OK

1.3 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/footer-5.6104f09d4a17484472e0.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4258)
Size
1.3 kB (1340 bytes)
Hash
b2719113de933b450b5305081fb91709
57cf846683ceb2373f2c43c28e913412ffb7d1cb
51f49ae77134cc71220ebcbad329d4641f290190fe90240ddc728a662fabe417

HTTP Headers

GET /app/website/js/footer-5.6104f09d4a17484472e0.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 13 Sep 2022 23:09:09 GMT
x-rgw-object-type: Normal
etag: W/"0b2c58a2f8166ec9ada9989daead7031"
x-amz-request-id: tx00000000000003dbaefab-0063210e18-c0351c8-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-5.6104f09d4a17484472e0.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 88066b6a9d228a390e1a06f9c114400a7771a2ab
x-request-id: 817152804a2a546bb6760a77555342f3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1206887
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.628724,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1340
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/footer-5.a31aac545d842d0f1bd5.css

151.101.85.46

200 OK

288 B

URL HTTP/2
cdn3.editmysite.com/app/website/css/footer-5.a31aac545d842d0f1bd5.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (848), with no line terminators
Size
288 B (288 bytes)
Hash
20bee51534e27efb91e4d52e9146e6df
d1fea0b3bc43963595aaf87af0a2baf1b97e8feb
e78244b5f41fc238340d9010caa9cc584f3cdf156ffffdda5daedec9c4a4f3ba

HTTP Headers

GET /app/website/css/footer-5.a31aac545d842d0f1bd5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 09 Dec 2021 21:01:03 GMT
x-rgw-object-type: Normal
etag: W/"cdfb816a67e7f6b5cc93bc559be24d42"
x-amz-request-id: tx000000000000036662749-0063167477-c033918-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dcad98fff835883eb4474ff15b5f35d35527cbfd
x-request-id: 6981b2767b64bf239db20d28ef9f785f
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 2401716
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.628724,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 288
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2

151.101.85.46

200 OK

17 kB

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 16756, version 1.0\012- data
Size
17 kB (16756 bytes)
Hash
603c99275486a11982874425a0bc0dd1
ffeb62d105d2893d323574407b459fbae8cc90a6
4ffc35ac4d5e3f1546a4c1a879f425f090ff3336e0fce31a39ae4973b5e8c127

HTTP Headers

GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-600.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Fri, 26 Aug 2022 21:17:06 GMT
x-rgw-object-type: Normal
etag: "603c99275486a11982874425a0bc0dd1"
x-amz-request-id: tx000000000000036fbba15-00631696b1-bfe36ba-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dcad98fff835883eb4474ff15b5f35d35527cbfd
x-request-id: e0046c3270b2b7a07c0c59c70a7e5d1e
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 2411658
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.704250,VS0,VE1
access-control-allow-origin: *
content-length: 16756
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2

151.101.85.46

200 OK

17 kB

URL HTTP/2
cdn3.editmysite.com/app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /app/website/static/fonts/Open%20Sans/open-sans-v34-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Mon, 22 Aug 2022 16:42:23 GMT
x-rgw-object-type: Normal
etag: "e43b535855a4ae53bd5b07a6eeb3bf67"
x-amz-request-id: tx00000000000002a2d83e3-006303bc41-c0351b0-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 1dea62ed7a4df6ba0ec605494d4a9bf4
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 1804303
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836412.697355,VS0,VE15
access-control-allow-origin: *
content-length: 16740
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css

151.101.85.46

200 OK

351 B

URL HTTP/2
cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (626), with no line terminators
Size
351 B (351 bytes)
Hash
ee20922f55875dd45d7acae546cadedc
491672dcd84153d29c9e2346e0f78d1fef5e729d
6594eb11c5c147a510920933dbd3177b6678ce61f0bdc38a6377761534792336

HTTP Headers

GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000000000000505f8f1-006328ebc1-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: fd6152d8aba2d68cd31403255b441574c0c6e98e
x-request-id: 8da80ad841ea012d671e5636c99cbad7
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 959952
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664836412.802292,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 351
X-Firefox-Spdy: h2

cdn3.editmysite.com/app/website/js/free-footer.43afe0e4c322617e1e40.js

151.101.85.46

200 OK

3.2 kB

URL HTTP/2
cdn3.editmysite.com/app/website/js/free-footer.43afe0e4c322617e1e40.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7387)
Size
3.2 kB (3204 bytes)
Hash
9ab2c860f287370aaaf14d00cf613667
4f5dcc7b7f3895ad4791d7d7620be632448037b4
204833cf49580a9bc07b4ebeb10bdcffab5f18618e11510f8c9429829e5b40c7

HTTP Headers

GET /app/website/js/free-footer.43afe0e4c322617e1e40.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 17:54:20 GMT
x-rgw-object-type: Normal
etag: W/"3f0eaeb3f61e794c8e09f13bd43ceef4"
x-amz-request-id: tx00000000000000d87e37c-006335dc2b-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.43afe0e4c322617e1e40.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: e413d7701fe068c0931fc7832931dc83f6856300
x-request-id: 2400a928e6f855fe31b98213a686ef01
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:31 GMT
via: 1.1 varnish
age: 362042
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1664836412.808397,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3204
X-Firefox-Spdy: h2

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.235.202.207

200 OK

2 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.235.202.207:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1892
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 03 Oct 2022 22:33:31 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Tue, 03 Oct 2023 22:33:31 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://btconnect-109798.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]

199.34.228.39

200 OK

182 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
182 B (182 bytes)
Hash
6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0=
Content-Length: 89
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:31 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu95.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]

199.34.228.39

200 OK

79 B

URL HTTP/1.1
btconnect-109798.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with no line terminators
Size
79 B (79 bytes)
Hash
26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0=
Content-Length: 77
Origin: https://btconnect-109798.square.site
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 22:33:31 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu44.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

btconnect-109798.square.site/app/website/square.ico

199.34.228.39

200 OK

6.5 kB

URL HTTP/1.1
btconnect-109798.square.site/app/website/square.ico
IP
199.34.228.39:0
ASN
#27647 WEEBLY

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
6.5 kB (6518 bytes)
Hash
d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

GET /app/website/square.ico HTTP/1.1
Host: btconnect-109798.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Cookie: _snow_id.f9a2=bdd98123-32d4-4d99-a905-6b3e025ae2bd.1654494728.2.1664836411.1654494730.ff443d51-09d6-4418-aa66-e7259d037dd4; _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6IlBhR213V2txcHBaSGNQRTVWWlZWWXc9PSIsInZhbHVlIjoiUXA0SWQ5UEwxV2hQaFhcL090elk3SWFKSXNKZ25IZTBlMkV1QUhMdytTSjIyMHh2ZVBuWWp1Z1kyM1hROVBjK2xGZUFQdWZTOXByOHpIQVlxQ3FIYUFRa1B3N2N6RTZLQzcydHlBSFV4dmFFamFZelJIYmVXYkloeE1DZ1QrclkyIiwibWFjIjoiN2E2MmI1NDM4NDliNzYxYTliZDY2MDhiNDNjZGZjOWM0NjkxM2FlM2RkODc4MzEwNTJlODcxYThjOGMzMzk0OCJ9; XSRF-TOKEN=eyJpdiI6InFGYXlKZVF4RE1RT2NlWG13QlM0U0E9PSIsInZhbHVlIjoiVlBMYkVGcEJCUjZYaUR0enByWXpGcDV1VHlPRVZCbWw3Z1F3eTk4a3lDVHA4M1NTY0crUUJZMnlEYlNkaGw1aFNSY2JHc1ZMc2FJS3VYTVFLa2dnOFoybzRBdVBnUmlSS1FFbnl3RDlERERuWm9nRGtWRUM0d09PUWM2SkNFcDUiLCJtYWMiOiI0YmU0MWI3OTNlMzllMjY5NTQ4NzhhZmRkMjFiZmEzNDkxNDVlYjkwYWNmOTQxOTFkNTk3YTM0NDZlZDZjZGU5In0%3D; PublishedSiteSession=eyJpdiI6Im10QzVSYWZcLzBpK2ZwOTZyQkQxSXFnPT0iLCJ2YWx1ZSI6ImFKUUoxSTM1cjJZbE5hQlVGT1wvbjZwNVhSSjlxVTYrZDgydHBmWW5MUzVNWXJaSmNLQzB3R24yb1lyQkFtaTVJZDBKZnBlTERHajRDdG5hODl3QjZPNTFaYXVWMTNDc3pDeGloOEUyMGIwR3ZDUlRTenY0b1I3WGc4dytxUnQ2dCIsIm1hYyI6ImE5OTY5ZmY3NmRjMWMyMzM1YWFiNDg2YmFmZjhhZmEzNWU1M2VmMDZlYjJkYWZhZDU0NTUzYTk2ODIzMTA4MzIifQ%3D%3D; _snow_ses.f9a2=*; websitespring-xsrf=eyJpdiI6IjJXREFxRnhJYk9BajBGQ2ljMXlZcEE9PSIsInZhbHVlIjoiSUJSa0xCS3V6Z3liOFV0a2hUdFRcL2FNYjFxQTBqZGtjc2RpR2ppdlNrXC9pOVlHVloyWjhTN1gxdVwvN0lMQzhSVFhoQjBcLzhEclQxSUxNWnFUWCtaSEQwdHg4MjU1XC9QQkM1TzFPN2gyQjRPdkJjeWNNZmxyRnJnWit0ZU90UjN3cSIsIm1hYyI6IjBmNDBmNjdlOTFhMmI0NmYxYzFmZjdiZjYxMzllNDhjMDBiZDA2MzA4OGU2ODY0YTVmZDhmYTM4ZjgyNjk0NzYifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 03 Oct 2022 22:33:32 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001af9993-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn135.sf2p.intern.weebly.net
X-Revision: 83b6365c027ad381464856b1585d8e265193d076
X-Request-ID: 9334223d0819ab56d71eee3fda8c2922

cdn3.editmysite.com/app/website/js/site.81f9834bfdb433dc7cec.js

151.101.85.46

200 OK

0 B

URL HTTP/2
cdn3.editmysite.com/app/website/js/site.81f9834bfdb433dc7cec.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/website/js/site.81f9834bfdb433dc7cec.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btconnect-109798.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 17:52:22 GMT
x-rgw-object-type: Normal
etag: W/"251f3ea64bbc29712eace55eb0b59e29"
x-amz-request-id: tx00000000000001077cd87-00633b21b0-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.81f9834bfdb433dc7cec.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: a5bcc4a23716c7afcac08b40a49d28b4a05cdb53
x-request-id: fbb9cdd61ea4d2df39d4d865e14d01c9
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Mon, 03 Oct 2022 22:33:29 GMT
via: 1.1 varnish
age: 16777
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664836409.476394,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 572936
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations