r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1f67827b21be68d925837dd729590f2d
dc24511141f5352e496b300d7d7e81b0cffb7475
afb1850e7c16f02d267a1310f1681367ecf598816fc62bd02447ffcd26117a9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFB1850E7C16F02D267A1310F1681367ECF598816FC62BD02447FFCD26117A9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5312
Expires: Tue, 10 Jan 2023 08:14:57 GMT
Date: Tue, 10 Jan 2023 06:46:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14536
Expires: Tue, 10 Jan 2023 10:48:41 GMT
Date: Tue, 10 Jan 2023 06:46:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 10 Jan 2023 05:48:28 GMT
content-type: application/json
age: 3477
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bt-server-104707.square.site/
302 Found 390 B URL HTTP/1.1 bt-server-104707.square.site/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0c397e4602dd22f41ccd305a741ac0fe
cd7fe293f8e8e22f597ea6302b3baa01365688f1
d64a5ae8f5351234b81d188d033626b9e4baa840366bce512d5fa2eb858bafd2
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET / HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Tue, 10 Jan 2023 06:46:25 GMT
Location: https://bt-server-104707.square.site
Set-Cookie: publishedsite-xsrf=eyJpdiI6IjRcL09HbUgzS28yWVpCVXVpY05JQkxBPT0iLCJ2YWx1ZSI6ImhVY3RqUGVJQ25xNDBDWkRodytzVVFaWHVnbnZLTG05WFlcL3B3NlwvMUx1cmc2UDRIWkZuMzROMTNBaEloS1BlODBHbVJ5VGE2cGVFZHdTcFpHRjF3QWJFMEhsaUZYTDNHdXBTeFo0cFwvdFNVXC9cL0VUYTFUdkFKV3hzWmVZdWZuakgiLCJtYWMiOiI3MzM3MTk0NDMxNDY3NTlhM2Y4ODYxMGI0NGZmZjIwYWFlNGQyYzM3NjI5MDZkMGQ0MzdiOGJiZjZmZWJhZDk4In0%3D; expires=Tue, 24-Jan-2023 06:46:25 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IllOeGlZalhrQ1BVVzBtS2krQ1RKa3c9PSIsInZhbHVlIjoiOVl2ODM4aW53NWZcL2VYVWt6XC9iOVhRWHg0S3EwOFJPY0E1SGxmcVE3dTBHM0ZpSUlsWFVHUnBIZzAwWW9tZTc2b0xuU2JJSk9qeHYxV0lIOVpvRlRuSk4rYzR6d2ZDZDloVlNkQmxvRlkxamdtcmpMM2dFNnRzUm91MlA0N1lwVyIsIm1hYyI6ImEzOGRmOTY4NDQ5ZDRmMDQyMGJmMWYwNGQ3N2IyODNkMDg5Yjg3MmVmMWU4MWE0YjJhM2JlNmYwZTQ5MTc0ZjcifQ%3D%3D; expires=Tue, 24-Jan-2023 06:46:25 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6InJFMkQxZjVuOTdqNVJjVzZvanBaa1E9PSIsInZhbHVlIjoiMmU1NGJyTzh1N1JtMStBd2oxaWhGUmJjakIwdkR2bHhsRVwvZHlGeHdNd044cnNWSVVkM1VqRHpVSk5FY0F5Z0VtcFwvKytcL1FlWFlNQ0lJSWZ1eHFNMkxXM1Erb1NvQm5qOGFMTmNkekpcL0pLamVIeEVwZlJSM2J3RjRwU1pOQTdJIiwibWFjIjoiNTgzMDQ1ODllNDcxN2NkZjFkNDg1YWYwNmExYzIzYTJjZDcxMzk5OGI3YWYwNjU4ZjhlZjczNjgwYmIzYTUyZiJ9; expires=Tue, 24-Jan-2023 06:46:25 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu133.sf2p.intern.weebly.net
X-Revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
X-Request-ID: 06f6a1e4d51aad694ba4e0a649d39e33
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89a058935fd04697c87e9441fbb466a9
59b5b08119374b1da34cff7e43a7c6dc80103f6e
3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9342
Expires: Tue, 10 Jan 2023 09:22:07 GMT
Date: Tue, 10 Jan 2023 06:46:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OaJa+Fu50AsZevKKFVrfs+OLuRc6d7UP0xzCdKSkP5TW0GmWigvCSLWAs/KVPp7abg+Zs/kBHjZnvHaxB9+Xrg==
x-amz-request-id: N84K0CNF5D2K0HXX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 10 Jan 2023 06:01:32 GMT
age: 2693
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 10 Jan 2023 06:46:25 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 10 Jan 2023 06:33:45 GMT
age: 761
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 4bf62777addefb7dc626ed3a53b924fa
3058e20fc6e07ebe056e83712df61b26fdf03dca
0e2733aa2b66df5c8470a3430823d0b89264176ab07e119b13060f27c62c52fa
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "0E2733AA2B66DF5C8470A3430823D0B89264176AB07E119B13060F27C62C52FA"
Last-Modified: Mon, 09 Jan 2023 22:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Tue, 10 Jan 2023 07:46:26 GMT
Date: Tue, 10 Jan 2023 06:46:26 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash e8e0c910ffff02061a1806b1aa8cf9d2
c5bf0e7ad96e89b17a657fcb1e1cd1aa6d15ab89
896f08fa0030a1313df1f05ef47c5d1f11caa9094380fc026b95193164005448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 97
Cache-Control: max-age=94919
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 06:46:26 GMT
Etag: "63bbd928-1d7"
Expires: Wed, 11 Jan 2023 09:08:25 GMT
Last-Modified: Mon, 09 Jan 2023 09:06:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
bt-server-104707.square.site/
200 OK 8.9 kB URL HTTP/1.1 bt-server-104707.square.site/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (19430)
Hash 06eaeb2aa0e24e2fb4ec6c1f26b6409e
75cabf793cc91078a434c88c354469d7be641714
c9873cf1e1245dda5564d91cf2169a60249c3a3c7c94cdf27a9df0fb5328b93a
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET / HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Tue, 10 Jan 2023 06:46:26 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; expires=Tue, 24-Jan-2023 06:46:26 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9; expires=Tue, 24-Jan-2023 06:46:26 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; expires=Tue, 24-Jan-2023 06:46:26 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn149.sf2p.intern.weebly.net
X-Revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
X-Request-ID: 175474fd5b46ae5e87d615ebb0695abb
Content-Encoding: gzip
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0MOdErSHib/nDIbmw6Uwug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zLysji/L+Of2pEWeFPYt7JolCM0=
cdn2.editmysite.com/js/wsnbn/snowday262.js
200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 04 Jan 2023 19:27:59 GMT
etag: "63b5d33f-124fe"
expires: Thu, 19 Jan 2023 08:38:42 GMT
cache-control: max-age=1209600
x-host: grn114.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
age: 425264
x-served-by: cache-sjc10061-SJC, cache-bma1668-BMA
x-cache: HIT, HIT
x-cache-hits: 26, 4535
x-timer: S1673333187.705950,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25752
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/site.973ddc22f8694b15d85e.css
200 OK 24 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/site.973ddc22f8694b15d85e.css
IP
File type Unicode text, UTF-8 text, with very long lines (64921), with no line terminators
Hash 8c60406ea590dcf69b9449935dd2a3e9
0f5f05bb816318e9c296a5dfb0722d26d070a3fe
c491b43fcc54355cbad50b9e3f7669ffeca7be6fac1e833feb0a4b7aa9bcc82f
GET /app/website/css/site.973ddc22f8694b15d85e.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 06 Jan 2023 17:22:54 GMT
x-rgw-object-type: Normal
etag: W/"8b3c9559c02b85f1e4036133d13c07f7"
x-amz-request-id: tx000000000000058a1ba38-0063b8595a-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 21a345688c10c921dba7a437bb0211486ebff07d
x-request-id: d265bba703ee0368a2bf7d3826c11b81
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 307266
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.710346,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24139
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8af9a6a42eb51d862172.css
200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.8af9a6a42eb51d862172.css
IP
File type Unicode text, UTF-8 text, with very long lines (64204), with no line terminators
Hash 5a08057dbd0b09fdcef375354aca0ada
3633aece56e4a03b6118cf199c40a4f4c6915faa
762c102d3386b3244effa9bfc21ef31dcb5d143732eb17041c0097c2d99f2b71
GET /app/checkout/assets/checkout/css/wcko.8af9a6a42eb51d862172.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Mon, 09 Jan 2023 17:22:21 GMT
x-rgw-object-type: Normal
etag: W/"651e92c6a8443e8f2e6ffaa794179cc0"
x-amz-request-id: tx00000000000005ad09296-0063bc4db0-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 13523
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.710478,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23362
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP
File type ASCII text, with very long lines (11882), with no line terminators
Hash 20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 24761
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.711974,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4998
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/runtime.80250ef9db79e2263f66.js
200 OK 25 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/runtime.80250ef9db79e2263f66.js
IP
File type ASCII text, with very long lines (51803)
Hash 1ea0be575678b6d567b435a1c6fc36fd
fef6b8814901a227751729c3d60e3b077623807a
9d5962fcac160cb6f7ee393f7387e0909ec5d1d545b9595bf260dd465e11d770
GET /app/website/js/runtime.80250ef9db79e2263f66.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Jan 2023 21:11:33 GMT
x-rgw-object-type: Normal
etag: W/"af0f1d2188b3ce427cfecb4590487eaf"
x-amz-request-id: tx00000000000005b3732f3-0063bc836f-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.80250ef9db79e2263f66.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 216d4bbd6b458ec6f68920fbab4b050d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 34202
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.712382,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25375
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/vue-modules.9bc3531c7b14b533b653.js
200 OK 72 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/vue-modules.9bc3531c7b14b533b653.js
IP
File type Unicode text, UTF-8 text, with very long lines (27432)
Hash f4b29141d74cfc31ae87b2379bf827c6
d3cecf2609cbc423e0a59e9cad96c96595fc550c
77ba93a6fbe46719dede0298898f4d896c073a42d0c093179615edf38f1fd0e5
GET /app/website/js/vue-modules.9bc3531c7b14b533b653.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:22 GMT
x-rgw-object-type: Normal
etag: W/"be42f69ec175a01b6e195526f58dae71"
x-amz-request-id: tx00000000000003b70ac6d-006384ffda-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/vue-modules.9bc3531c7b14b533b653.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: bc9c9b147c802d76500971d6773c4126ddad6f5d
x-request-id: 40250d3662d1b25130b369a7dbbdc2eb
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 3046510
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.714835,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 72192
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/languages/en.b510ee5ffdfa7792e0a2.js
200 OK 153 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/languages/en.b510ee5ffdfa7792e0a2.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 153 kB (153429 bytes)
Hash 83384711613980e6e42a019864049756
1873c0c2a6cab5dcd54d730edd870c6ea22df4b0
f964fbb1ada77a48a93fd0851ca7b63b697901358fa1c0a47c28955ae23ef3b0
GET /app/website/js/languages/en.b510ee5ffdfa7792e0a2.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Jan 2023 16:47:18 GMT
x-rgw-object-type: Normal
etag: W/"b4eee3aadb38a2a3ce50dacad671e8de"
x-amz-request-id: tx00000000000005b015973-0063bc456f-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.b510ee5ffdfa7792e0a2.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: e388c62902c22d9b7ac43ced3464d5c2
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 17498
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.735449,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 153429
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.be14e50d1628faa410488f65362a397d.json
200 OK 325 B URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.be14e50d1628faa410488f65362a397d.json
IP
File type JSON data\012- , ASCII text, with very long lines (1611), with no line terminators
Hash be5c6eec9cf3e92f8df759e392e01209
e0bff726136f738e6a1fe3e991d9a64dcf46d23a
e630015425b5298e0f7db7e397850913ea94d317beba50978a9df8e8364334ae
GET /app/checkout/assets/checkout/locale-imports-map.be14e50d1628faa410488f65362a397d.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-server-104707.square.site/
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Wed, 04 Jan 2023 20:55:19 GMT
etag: W/"63b5e7b7-64b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 456616
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1673333187.828266,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 325
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.64aea0a36c80baea056aea914aaa858e.js
200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.64aea0a36c80baea056aea914aaa858e.js
IP
File type JSON data\012- , ASCII text, with very long lines (16859), with no line terminators
Hash 90f970f994211af8917fe7026f9f0b26
787847a343f27c38d0e0b82369d71d37b16efc27
853c839f52f30878e8b399699bda2983a19c3b30563eef40e5c77792662aa191
GET /app/checkout/assets/checkout/imports.en.64aea0a36c80baea056aea914aaa858e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-server-104707.square.site/
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Jan 2023 22:38:16 GMT
x-rgw-object-type: Normal
etag: W/"64aea0a36c80baea056aea914aaa858e"
x-amz-request-id: tx000000000000059dc3a44-0063bc97df-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.64aea0a36c80baea056aea914aaa858e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 29134
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.827725,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3599
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
Hash 747d2005448c36d852d49e64e5e3f733
fd7b111061051b3ea834e980f92349bb3cbb5446
ccabb8e5a50fdc628e056fc2245e4764222290721f5fce8d7299b0538191e762
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 10 Jan 2023 06:46:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "37CA231456A1A408C3FC62C8226FE9BD05031BA5"
Expires: Tue, 10 Jan 2023 18:00:00 GMT
Last-Modified: Tue, 10 Jan 2023 06:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787374a149cf1c0e-OSL
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
Hash 747d2005448c36d852d49e64e5e3f733
fd7b111061051b3ea834e980f92349bb3cbb5446
ccabb8e5a50fdc628e056fc2245e4764222290721f5fce8d7299b0538191e762
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 10 Jan 2023 06:46:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "37CA231456A1A408C3FC62C8226FE9BD05031BA5"
Expires: Tue, 10 Jan 2023 18:00:00 GMT
Last-Modified: Tue, 10 Jan 2023 06:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 787374a14ec1b50b-OSL
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5030545ec5bd400e97e67d13bcea874d
11c259e8b30f01d41578e90cc12d013c899c72ea
52e866c8b6a52c9f4a49c346c5998be7d928caf32327b5b49aaf167ed803081e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129160
Date: Tue, 10 Jan 2023 06:46:27 GMT
Etag: "63bc5223-1d7"
Expires: Wed, 11 Jan 2023 18:39:07 GMT
Last-Modified: Mon, 09 Jan 2023 17:42:59 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FoxPZv8Zjldq7fq_ZericQudCyVyBRMdvEicXII8cgmFtCu_g6lK8g==
Age: 3368
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5030545ec5bd400e97e67d13bcea874d
11c259e8b30f01d41578e90cc12d013c899c72ea
52e866c8b6a52c9f4a49c346c5998be7d928caf32327b5b49aaf167ed803081e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 10 Jan 2023 06:46:27 GMT
Last-Modified: Tue, 10 Jan 2023 05:20:36 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pZ2-W3qROyTu4EU4YUANXyH607rSi5NdtLQf3LQTOpz1tU1Fh6O3AA==
Age: 5151
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://bt-server-104707.square.site/
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 10 Jan 2023 06:46:27 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://bt-server-104707.square.site
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
200 OK 894 B URL HTTP/1.1 bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP
File type JSON data\012- , ASCII text, with very long lines (894), with no line terminators
Hash d4f896de8f2bc2d075ff200a4d6490c9
c58913dbfe339e4755a84c8bef2ea8738b74e909
1a9fffbf126b2872e8c70696d9eb693e1ce513b21e45b499c83a63576dc9e6a1
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9
Content-Length: 78
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333173.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 10 Jan 2023 06:46:27 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu28.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 894
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
200 OK 2 B URL HTTP/1.1 sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bt-server-104707.square.site/
Content-Type: text/plain;charset=UTF-8
Origin: https://bt-server-104707.square.site
Content-Length: 429
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 06:46:27 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://bt-server-104707.square.site
access-control-expose-headers: retry-after, x-sentry-error, x-sentry-rate-limits
vary: Origin
x-envoy-upstream-service-time: 1
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2263
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:46:27 GMT
Connection: keep-alive
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1994
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 10 Jan 2023 06:46:27 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Wed, 10 Jan 2024 06:46:27 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://bt-server-104707.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2263
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:46:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2263
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:46:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2263
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:46:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231b20e9-b883-4d22-a499-0edffa21d837.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231b20e9-b883-4d22-a499-0edffa21d837.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4753795f36012ff993f492314aa210ec
d5c8f6896fda40fc34dbc7554ce1ece173dd2d09
cbf28b1d51aae0e01fbe9228bfb1afead400ca7cc69875ffaef573f9e068a51f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231b20e9-b883-4d22-a499-0edffa21d837.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9052
x-amzn-requestid: 51cb3d41-07e4-499a-b7a7-b4ee4963c587
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: efp7aGB-oAMF-0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bc89e2-7bb9960c3f0116240e5ba086;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 21:40:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _Uj03bFs1JcsW67nDiC001HBFPRKWTas3EFwGDpU5LnGIKDINZ3mqQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 22:01:08 GMT
age: 31519
etag: "d5c8f6896fda40fc34dbc7554ce1ece173dd2d09"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc8e3798-004e-4393-91d7-0581321417a7.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc8e3798-004e-4393-91d7-0581321417a7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e351685c57200ff97e77036c699cd09
1ff8bae6a44f911b369486e137e923b2e596b8c1
0a72cf94bdcd4819556cfacb690743ace708b4edca35b5efc328cc8aaf0f24ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc8e3798-004e-4393-91d7-0581321417a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5595
x-amzn-requestid: fa40af0f-85a1-4abe-8c0d-c6a89cd8bf09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eT2W-EFFoAMFruA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7d0f9-7c38c961644029073b16217c;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 07:42:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Re4XcM4N35eXhs-10YFDJLiq_OaeZFkEXor08P_a5bETXffb6VMyBg==
via: 1.1 fec77e486350d1bd33f526a760d8b5a4.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 17:46:51 GMT
age: 46776
etag: "1ff8bae6a44f911b369486e137e923b2e596b8c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22aaa4ec-a3a2-40cd-b0a6-2727e078bd89.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22aaa4ec-a3a2-40cd-b0a6-2727e078bd89.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e93c4504f211614e76206db4ef758cb2
933bd495fcfd2d39ad13f1f5d0aba5a0a3a677bf
f3bde37de7ecbfbcd7c52e39178625760af7c86ffeaa6a68eb2ad1462e9a8be6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22aaa4ec-a3a2-40cd-b0a6-2727e078bd89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9743
x-amzn-requestid: d4290427-ed0d-4805-9e4e-57bf21ea8813
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: efpx3FBroAMFZYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bc89a5-6d54f5317723f2602860c410;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vJmVzAh1Ski2XBZKCE80TrHilq12hEHlACMbKbM_rzPQDN9AO-I9Sw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 21:58:35 GMT
age: 31672
etag: "933bd495fcfd2d39ad13f1f5d0aba5a0a3a677bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feebfbbfd-68f7-4ded-a474-c951cdd7773f.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feebfbbfd-68f7-4ded-a474-c951cdd7773f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56ae748c9316a1db699c71c07f74eccd
42d2c5cffa7040decca69a3cab8ecc936acebc43
2b613914077dcdd5f520a26362f717d06e5756dc103aaa7924055e2cab823548
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feebfbbfd-68f7-4ded-a474-c951cdd7773f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7572
x-amzn-requestid: 195485a7-598e-483d-9c89-a23bcf33bdc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZ0X8HosIAMFTQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba3432-6984bf62713f6bd63fc8cdc8;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 03:10:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rttJ4c_pZrGzDdduW4GXN7_ijnd9V5j-yep38_6A-_jpnUZhYYJjlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 03:28:24 GMT
age: 11883
etag: "42d2c5cffa7040decca69a3cab8ecc936acebc43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafe713be-1c84-4820-ac74-bdcf12a854d4.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafe713be-1c84-4820-ac74-bdcf12a854d4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0fb07eed296f5106e7b0f40702adddc2
24f637156c37dce6ee8c94f40ce41c1f6ce57dca
ed656dadbcc659a4342b1c04d615adb92ef8a5f69092225e04890400951dddf3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafe713be-1c84-4820-ac74-bdcf12a854d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12190
x-amzn-requestid: 3ab3f00d-2464-445e-8004-9efc440798e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: efo63HseIAMFgMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bc8845-584746e11b0c570a215e5221;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 21:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cwz3dynd4J7K_JzcpnsqaU89GZTWoo6q7AccSalqORPJFT2Pm0hZwg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 21:58:29 GMT
age: 31678
etag: "24f637156c37dce6ee8c94f40ce41c1f6ce57dca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8bd889ec-302d-44e9-a290-89266ee38381.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8bd889ec-302d-44e9-a290-89266ee38381.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db3c7aaa80c366124e52b9da9aa710e2
ac50f2b47dd387175f838d4606e33fb91fec37b1
d4e19635e7ad010d0bc8eb1c34084e9174026df4e36e9a972318b9f6b7957834
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8bd889ec-302d-44e9-a290-89266ee38381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7981
x-amzn-requestid: aef01bcd-4752-4435-a6a8-a33c78cb7d42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZ1FIFQVIAMFTmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba3553-2d2e650374cb35a322f96153;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 03:15:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qB9_IbgBxOPhMFxZzxb5k2c32_TW4MTYKyOCwZZ07dqnmGP7sDl9cw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 03:49:54 GMT
age: 10593
etag: "ac50f2b47dd387175f838d4606e33fb91fec37b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bt-server-104707.square.site/uploads/b/1221c160-7af9-11ed-b637-e566ceb1ed4d/icon_180x180_ios_OTU3Nj.png?width=180
200 OK 912 B URL HTTP/1.1 bt-server-104707.square.site/uploads/b/1221c160-7af9-11ed-b637-e566ceb1ed4d/icon_180x180_ios_OTU3Nj.png?width=180
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9cc5d156565b27ba45949c921e163d62
077076e12df05c25758b0ef0d5df2afde400f664
cfb778f9671cbd1985a2d442db4fa5f2181e881c3482ddd0011c925b560b38b2
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /uploads/b/1221c160-7af9-11ed-b637-e566ceb1ed4d/icon_180x180_ios_OTU3Nj.png?width=180 HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333173.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 06:46:28 GMT
Content-Type: image/webp
Content-Length: 912
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "9PvCYVhkD9Bl7C2nbKwBIV2d9umfcY2GJ+ruGzC8TNk"
Fastly-Io-Info: ifsz=1656 idim=180x180 ifmt=png ofsz=912 odim=180x180 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000000000005b18032a-0063bcfa81-c699baa-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: zf4a8
X-Storage-Object: f4a8a9632d3139a07eacbba13dee2af81ccc58897bd673510ddc1f84ca332a7a
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 1869
X-Served-By: cache-sjc10023-SJC, cache-pao17455-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1673333188.020042,VS0,VE1
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn72.sf2p.intern.weebly.net
bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
200 OK 201 B URL HTTP/1.1 bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9
Content-Length: 83
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333173.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 10 Jan 2023 06:46:27 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu27.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
bt-server-104707.square.site/app/website/cms/api/v1/users/144184888/customers/coordinates
200 OK 70 B URL HTTP/1.1 bt-server-104707.square.site/app/website/cms/api/v1/users/144184888/customers/coordinates
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 0202fec5c18173b1ccef517d7a8fb076
ed3c42952ab998b5f8f4570735caccb08bbbfbba
a496539bedf56d084f7654fb244367daf638da6ab09f7812b81c743baa995e26
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /app/website/cms/api/v1/users/144184888/customers/coordinates HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333173.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Tue, 10 Jan 2023 06:46:28 GMT
Set-Cookie: websitespring-xsrf=eyJpdiI6IkpNRVV2Y21mRExGSFBENXVNSFcrcVE9PSIsInZhbHVlIjoiMEUweUx4bEY5ZkFXeDFkNUZnMFhmMGdzcmNUcHM5eXpkdWF1VVAwOGViQjZWYU5VMkNPUjQ4V3FUampNWWVrRE5weGxiQ2I4cnR3ZkRKcXpDWlp1MDY0QlJtbkdjUG5FSksxd1k2bHFMc0UzMHlRODdzN0dlYmtmcEtSc21Ld2QiLCJtYWMiOiI5ZmQxZGE1YmZkZmJmMTA0NThlYjNiZWVlNWY2MjQxNWMxZWQ5ZDU2NzdlMDNkODBjZDg5NzIxNWFiOGNlYTAxIn0%3D; expires=Tue, 24-Jan-2023 06:46:28 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6ImdvWXZZMVJZWm5TQTkzXC9Ueko1SWpnPT0iLCJ2YWx1ZSI6IjcwdlMyaUdlZkxWQThTbzhuMVFIdlZSOFJjWkRlb0dJTGhBbFwvZVZHa3ZIdnNOeHBiakJlZ1pzY0docXE2ZnlENWtQWlpyZUVlcFwvWE54bjcrY2cwVlRBWnV5MmRPUm0xNjA4ZkZHb3dyMGNvOXY4c0VaMnBNbzFLbWdsYTZrQXMiLCJtYWMiOiJjNjBiN2UxMzMxYWRkNmFkNmU4NzJlMjg1NDZlYzM3OGY3ZDhmMjFlODQyZDY2NmM1Yzk1Yjk2YWIyZGNlYjJkIn0%3D; expires=Tue, 24-Jan-2023 06:46:28 GMT; Max-Age=1209600; path=/
X-Host: grn123.sf2p.intern.weebly.net
X-Revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
X-Request-ID: f8e339e948ec8f068a4b0b107d97241e
Content-Encoding: gzip
bt-server-104707.square.site/square.ico
200 OK 6.5 kB URL HTTP/1.1 bt-server-104707.square.site/square.ico
IP
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /square.ico HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6IkZ2ZUpXanhIdUhBZGV1RGVmM1BIYnc9PSIsInZhbHVlIjoidm5GRHdlNGJCa2dpUkloVUFyQzlXNm9Ob0NuT2d2RytjNnJlR3FETUV5SG42K1ZFWHdtVklscFZMUGlNdmxZU25zcjNwME9SY3ZTV2RMcTBWZVk0MG1KWmR4ZGtWTzh6Z1Vha2RHdlpwNFlZR285eFgrTkhPTG9HYUd1UlwvdXBZIiwibWFjIjoiZDA1NTUyZTk5NDkxMzAyNGI1OTYyZGViYTM0MDE3NGJiZDU3ZWRjZmRlNDY5MmRhNTZjMzVlZGY2ZmJlNmVkMiJ9; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333173.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 06:46:28 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001aa728b-00628473fa-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu122.sf2p.intern.weebly.net
X-Revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
X-Request-ID: 0a161a3a236b88c6ceafd366d88cafda
cdn5.editmysite.com/app/store/api/v23/editor/users/144184888/sites/582201325800487529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
200 OK 1.4 kB URL HTTP/2 cdn5.editmysite.com/app/store/api/v23/editor/users/144184888/sites/582201325800487529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1
IP
File type JSON data\012- , ASCII text, with very long lines (3809), with no line terminators
Hash f4b17c249cfd52bd0dda122495746792
7455d1e9686d1f07f218119a363b4f6b4911e96d
d19663cc1aa27ff84cbaf5ba6859259bd6b0a3c0daa1eeea05cbaf1519730784
GET /app/store/api/v23/editor/users/144184888/sites/582201325800487529/store-locations?page=1&per_page=100&include=address,free_fulfillment_conditions&lang=en&from=latlng:59.955,10.859&sort_by=distance&valid=1 HTTP/1.1
Host: cdn5.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: s-maxage=604800
etag: W/"af3f9f753e33c52a6d02ce7559f061db"
access-control-allow-methods: GET, HEAD
fullcache: m
x-revision: 15c8b1c063527dc18309bb5763dabe288a77142d
x-request-id: e41c4595c7fa6ebcf7c18430a0767c8a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1674-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1673333188.294601,VS0,VE293
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1363
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Square%20Market/Square%20Market.css
200 OK 393 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Square%20Market/Square%20Market.css
IP
Hash f0935782737336d7aedae7e9534d27be
34b49a0ffcd13e03ca2d1303d5a71773e2282362
728ed2ef57525be9b9a8541ffe47f7600ba08e3ce0646afce5b49736692f7745
GET /app/website/static/fonts/Square%20Market/Square%20Market.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 17 Sep 2019 17:09:50 GMT
x-rgw-object-type: Normal
etag: W/"a7ddbe9e253a4f3a9c6de33cf4f3ce60"
x-amz-request-id: tx00000000000000b7d07bc-00626682c3-4d6022f-las
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: dac0242964acdc08ef6cc16c666026a58a1e15a5
x-request-id: 118bb1c1a071abd6cc161598c41b7f5d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 3463772
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.720424,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 393
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/site.0489a0b0dbb6d56c19f4.js
200 OK 3.9 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/site.0489a0b0dbb6d56c19f4.js
IP
File type ASCII text, with very long lines (10135)
Hash 4d5cf35f7af8bfb5855046d65613fdee
417edcc5f6806145e469e623640b80d78e4808e6
8ae35387968d088b0cc9c2c264f236a366b0d7cbf6134450acf18286048a4a4d
GET /app/website/js/site.0489a0b0dbb6d56c19f4.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Jan 2023 21:11:33 GMT
x-rgw-object-type: Normal
etag: W/"af69033633e6f1ea8021f98fbbe99433"
x-amz-request-id: tx00000000000005aca62ef-0063bc8368-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.0489a0b0dbb6d56c19f4.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: eb7086195dd8207d99676bd2be17ff85
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:26 GMT
via: 1.1 varnish
age: 34202
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333187.717080,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 642765
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/26162.92609757c988d62b3b5e.js
200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/26162.92609757c988d62b3b5e.js
IP
File type ASCII text, with very long lines (11061)
Hash 5cd33e67e4a9d806de207d9853bc1b58
fee57e7a810cdd664474ca2aa5fa94c9a6bdc210
46998edb1168fc990dd7d4ac265ad747b2d3516028f8f970b7afeb045b0fbb00
GET /app/website/js/26162.92609757c988d62b3b5e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:45 GMT
x-rgw-object-type: Normal
etag: W/"deafe5ad6a754e6597d8302f9fe795a2"
x-amz-request-id: tx000000000000056a7a902-0063b6fee6-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/26162.92609757c988d62b3b5e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 56b2de12f7388effb0e8eab73fdd5385
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 17441
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.738374,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6039
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/63481.e65abf13c658fec80ae7.js
200 OK 6.5 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/63481.e65abf13c658fec80ae7.js
IP
File type ASCII text, with very long lines (5942)
Hash f2758cd9d5c45090c9c30dffad9992e3
086cbc86b9e785c8f93fbb1ecc2e84ad0adfd961
5f23df7760a03a1c6af678540cde3b1d89e537ffefecd21f3e23187f1e27238e
GET /app/website/js/63481.e65abf13c658fec80ae7.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 19:23:07 GMT
x-rgw-object-type: Normal
etag: W/"7d83fc07aeea326e56a61d94ee43b3af"
x-amz-request-id: tx000000000000057c7de1e-0063b723f4-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/63481.e65abf13c658fec80ae7.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: cbf1e8da2c56276a5954db62d8b75c22
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 25924
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.741419,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6521
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/navigation-mobile.b411bc328442085812dd.css
200 OK 5.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/navigation-mobile.b411bc328442085812dd.css
IP
File type Unicode text, UTF-8 text, with very long lines (20612), with no line terminators
Hash 537a225572de90ab640e7dc4160d813c
ab17f8383d34dbde49012fc827ad18d6a27cdbee
ee3d656e675dfe2552e03ca22eb9a07cc815c7faaf3d1aecd236e53f1353737b
GET /app/website/css/navigation-mobile.b411bc328442085812dd.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 05 Jan 2023 19:23:07 GMT
x-rgw-object-type: Normal
etag: W/"296db0a213ed88ca36f49b3a3d90fd03"
x-amz-request-id: tx000000000000057f3342d-0063b723f8-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 14c498fe42d5a7a860774be944b1e53ef40b1e42
x-request-id: 3de6ac5af92182173d5731712f3b46b0
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 386487
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.743306,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5444
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/navigation-mobile.5aab77287e99196bcd4e.js
200 OK 12 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/navigation-mobile.5aab77287e99196bcd4e.js
IP
File type ASCII text, with very long lines (15501)
Hash b0d272610b617f05c614ce9be67ee182
7a8801d3bbf99c17ade984d60622e5d13cd0ae58
0bdfa75c338a6b9cff85a085b0b56e19aa4be4316f8865d6930f10c8a6f5cae7
GET /app/website/js/navigation-mobile.5aab77287e99196bcd4e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 06 Jan 2023 17:22:54 GMT
x-rgw-object-type: Normal
etag: W/"0a2760b6d9280277dd217e662eb33db2"
x-amz-request-id: tx000000000000058dba86b-0063b8595c-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/navigation-mobile.5aab77287e99196bcd4e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 21a345688c10c921dba7a437bb0211486ebff07d
x-request-id: 5b440d008e03de24c1617cd70e3c299c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 307261
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.743801,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12365
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/89814.a43ea91f477e0e3124d3.js
200 OK 4.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/89814.a43ea91f477e0e3124d3.js
IP
File type ASCII text, with very long lines (14754)
Hash 5682a285f205bd5b9be73b765661838c
64f278de3ba76935dce0053dd3f7b0ec83d23f3d
25c62c5e3c94a3063a1139f5ba705465453cea50b6779865b74086bc9981abe6
GET /app/website/js/89814.a43ea91f477e0e3124d3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:46 GMT
x-rgw-object-type: Normal
etag: W/"feab460c6ab0e2c3efb833beda87f55f"
x-amz-request-id: tx000000000000057acb8a1-0063b6fedf-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/89814.a43ea91f477e0e3124d3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b9906ca77c5b5b32c940fae40ed99b4c39c7bcc
x-request-id: a71d84121be4179fdbb401bfb419b165
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 395792
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.747176,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4639
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/46150.16a2725b4073664b8aef.css
200 OK 5.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/46150.16a2725b4073664b8aef.css
IP
File type Unicode text, UTF-8 text, with very long lines (21252), with no line terminators
Hash 107e1989ef1c598bf5f52eb2ee36d678
6dd23b020a3ee62e9ef40097792f3b92d44faccc
3900ad9874eb48fcc672f0da7601dc6d83594cb9ddd522ea8fd43ec3cad7bdbd
GET /app/website/css/46150.16a2725b4073664b8aef.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:43 GMT
x-rgw-object-type: Normal
etag: W/"ab6f3c44ed2c2ec4b531d400dfb37522"
x-amz-request-id: tx000000000000057d80ccc-0063b6fee2-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: b61a0edc0fb774487619a4ac33645e4a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 11381
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.750007,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5340
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/46150.992467a6cceacdcd371d.js
200 OK 5.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/46150.992467a6cceacdcd371d.js
IP
File type ASCII text, with very long lines (13481)
Hash 305db26d303d48d22c2ea93393c16559
1d3967ea3ac597c6e7ca67d5205af0b86008163f
0589ba8b336e4266466f866165de3e629759a8f6a34fe793ee31080134c4a260
GET /app/website/js/46150.992467a6cceacdcd371d.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:45 GMT
x-rgw-object-type: Normal
etag: W/"2fa864def55e8dac6f4a8ab1aba63814"
x-amz-request-id: tx00000000000005811d012-0063b6fee6-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/46150.992467a6cceacdcd371d.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b9906ca77c5b5b32c940fae40ed99b4c39c7bcc
x-request-id: f521a57d114abb02657cde9793d91113
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 395792
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.752144,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5594
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/78084.e8b7f3061986c7578fc7.js
200 OK 5.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/78084.e8b7f3061986c7578fc7.js
IP
File type ASCII text, with very long lines (14051)
Hash 3a5e0c66afccb68711a385fe1f2f435a
0e8eb2c47cacbc2b2a57a70e2619321052f82828
55c86e2402a5a5b1ae59ba6917999536bd1946aa290695a185f2c46c54baa57c
GET /app/website/js/78084.e8b7f3061986c7578fc7.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:46 GMT
x-rgw-object-type: Normal
etag: W/"78256858e12686c7f68c40e52b673d7b"
x-amz-request-id: tx000000000000057d80c75-0063b6fee1-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/78084.e8b7f3061986c7578fc7.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 34efbb5003cc2bc28e81b4cfd2baf911
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 16099
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.757337,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5422
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/73781.27bf5312fc2093341eb5.js
200 OK 18 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/73781.27bf5312fc2093341eb5.js
IP
File type ASCII text, with very long lines (44746)
Hash d80b83c626cc22dffeb984f91fdbd6b6
a85767067872f970c5f6442cf184f95d59474100
bd7545c17e2c7010995631acef5b6679767f9994127b9d09bc08964d12ae6f4b
GET /app/website/js/73781.27bf5312fc2093341eb5.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:46 GMT
x-rgw-object-type: Normal
etag: W/"8a63240146ae3856b1d9da71ee4e9cbf"
x-amz-request-id: tx000000000000057acb899-0063b6fedf-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/73781.27bf5312fc2093341eb5.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b9906ca77c5b5b32c940fae40ed99b4c39c7bcc
x-request-id: 3d6d9a3f1a39dbe66d72897857928679
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 395792
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.760503,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 18256
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js
200 OK 3.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/11562.08b50449ae7a3f4b6257.js
IP
File type ASCII text, with very long lines (3720)
Hash b05305d9df1b56994e7045dacc0242b5
9d5bcc531c42ae3ddc8fcd23e23a301bdcfc89a5
69da22dbd327ec00f4292829294c53deb1750afda3b236aff4381a69d6999003
GET /app/website/js/11562.08b50449ae7a3f4b6257.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 22 Dec 2022 20:44:26 GMT
x-rgw-object-type: Normal
etag: W/"b0eb0e08db2b8d54e1da1bfa5020e5a9"
x-amz-request-id: tx00000000000004e7e276b-0063a4c220-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/11562.08b50449ae7a3f4b6257.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 8e847386b1e8ff98bbf4f3cbf0a6de2b5de21036
x-request-id: 8a9efa69ec67ad6ba2cdae0385285e03
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 1591064
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.764453,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3359
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/cart-1.19dc0471e10ee57eead9.css
200 OK 7.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/cart-1.19dc0471e10ee57eead9.css
IP
File type Unicode text, UTF-8 text, with very long lines (26565), with no line terminators
Hash fb85756c206cd81b43d386d2f77039c0
ba2961e30eb2b8735793b6eb7f6bc13e7d2c39d1
d2edd81704ae5d129dc65e170d26d31852d5f56580cef5ae647dcf801bf596ed
GET /app/website/css/cart-1.19dc0471e10ee57eead9.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 05 Jan 2023 19:23:07 GMT
x-rgw-object-type: Normal
etag: W/"a57f121715e99c86aa4c2661e954bbd8"
x-amz-request-id: tx00000000000005afd7b0a-0063bccae2-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 746b515a7de8a1cbe7b8ba7b4de4f0b3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 16099
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.767107,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7202
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/cart-1.9259200a162b2905acb3.js
200 OK 35 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/cart-1.9259200a162b2905acb3.js
IP
File type ASCII text, with very long lines (13180)
Hash 5279e1f4739773f4b306a40ecfbe2f51
dde1ef28f38c2c98dd9e7478211712cb9d1119d9
854543f6462c3785a70f206b03ecadf8bb48ba5374e85b10b3ca428f232b6703
GET /app/website/js/cart-1.9259200a162b2905acb3.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 19:23:07 GMT
x-rgw-object-type: Normal
etag: W/"db1168c3c8f2b9689a740bb4118c3544"
x-amz-request-id: tx000000000000057f3302f-0063b723f4-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/cart-1.9259200a162b2905acb3.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b9906ca77c5b5b32c940fae40ed99b4c39c7bcc
x-request-id: 6aa356de094172ec83cc23846025be72
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 386486
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.768494,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34724
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/97167.e8d8b9db31474e587136.js
200 OK 8.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/97167.e8d8b9db31474e587136.js
IP
File type ASCII text, with very long lines (17943)
Hash a6411104be600667a3550dc7f7cf8bc8
c6dd413118fce21d226b47877e92ba8372caaa5b
de868ca4b2493d2738c58fad282d54edf3673df4c89c4511b9b8d0af50f4835d
GET /app/website/js/97167.e8d8b9db31474e587136.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:46 GMT
x-rgw-object-type: Normal
etag: W/"4f4059498350dc335631c89c3eaa68a3"
x-amz-request-id: tx000000000000057acbcbd-0063b6fee6-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/97167.e8d8b9db31474e587136.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 0b8112cbbb2f6f9252537a819f498ddf
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 16099
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.819727,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7988
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/header-4.63be6e7292fb5121c741.css
200 OK 6.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/header-4.63be6e7292fb5121c741.css
IP
File type Unicode text, UTF-8 text, with very long lines (23937), with no line terminators
Hash 6b5428a706221ccc77e76414779345be
cecef60b2d510eecd84537e59b647d20f90b4fe9
1cba7fcd1d4f8cb276df2a67a0291ebdf819bd8ae4ae2599fba45cbd805d27c0
GET /app/website/css/header-4.63be6e7292fb5121c741.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 05 Jan 2023 19:23:07 GMT
x-rgw-object-type: Normal
etag: W/"ac326993cc6fc670ed227f75c9432287"
x-amz-request-id: tx000000000000056fbb01f-0063b723f9-c67eadd-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 14c498fe42d5a7a860774be944b1e53ef40b1e42
x-request-id: 614324d9fa6cd19aef8d8b5daa1edd68
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 386460
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.819980,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6260
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/header-4.790dada79bfbc2b271be.js
200 OK 31 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/header-4.790dada79bfbc2b271be.js
IP
File type ASCII text, with very long lines (14179)
Hash 64b37b6d1c6f49ab991fa34467294f88
1a7406670f82df26bb5a4ef5bbe6599cdf67e95f
137009a0b30287549d9fa6a0f7fc2e21c62d975214574c2b7edb38318cc700bb
GET /app/website/js/header-4.790dada79bfbc2b271be.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Jan 2023 21:11:33 GMT
x-rgw-object-type: Normal
etag: W/"2b3052638ffcbf79ffd35a26413cba76"
x-amz-request-id: tx00000000000005aca6949-0063bc8370-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/header-4.790dada79bfbc2b271be.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 82c031d9b1dca2b8d1307a242c263780
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 34196
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.850939,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 31035
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 58d99194391edcb4acfa4846d7d80169
54acff39f5705d2d36bb1803885fa9aab1493f7d
4790ae0756f0494af6977ff834c06bd3b79a27148a23e0c727673f4324a40b3c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6526
Cache-Control: max-age=95935
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 06:46:28 GMT
Etag: "63bbc405-1d7"
Expires: Wed, 11 Jan 2023 09:25:23 GMT
Last-Modified: Mon, 09 Jan 2023 07:36:37 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 2434
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 10 Jan 2023 06:46:28 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Wed, 10 Jan 2024 06:46:28 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://bt-server-104707.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/78918.0dd81b52b676570c4d91.js
200 OK 1.8 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/78918.0dd81b52b676570c4d91.js
IP
File type ASCII text, with very long lines (4114)
Hash 62dd5821ecf55f387f235b5a781383d1
376eb42416e9611992843a56e045b243e3f4b0e5
ddb88d175fd2a97358a46dea9ac2647ca9711c40a022b0c371b3f612c61c103c
GET /app/website/js/78918.0dd81b52b676570c4d91.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 06 Jan 2023 17:22:54 GMT
x-rgw-object-type: Normal
etag: W/"ca9a368d3fe527a36efce67f4debe892"
x-amz-request-id: tx000000000000058a1bbc2-0063b8595c-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/78918.0dd81b52b676570c4d91.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: ce471935a695a476a47b14ad81a7d8ceecf2e364
x-request-id: aff62a7b1f278c2a646c0cf7dfd044e1
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 307261
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.766094,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4514
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/12101.86d09a48327a9f79cadc.css
200 OK 4.4 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/12101.86d09a48327a9f79cadc.css
IP
File type Unicode text, UTF-8 text, with very long lines (18854), with no line terminators
Hash 00c396a4ca57a5cdca2806cee35e68bd
3ea61c26b44847a3c0beb14c09764edec2ee34bf
0998053190aac5499c888a97ec16fa6a3bcf2ee3636025c478a53145f002de09
GET /app/website/css/12101.86d09a48327a9f79cadc.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:43 GMT
x-rgw-object-type: Normal
etag: W/"f60754c4f1ecbbda9a08673ad8cf4d81"
x-amz-request-id: tx000000000000056a7ab18-0063b6fee8-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b9906ca77c5b5b32c940fae40ed99b4c39c7bcc
x-request-id: 30334eb6d08d78ff600e0441d9426d1c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 395792
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.870943,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4369
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/12101.b6f19cd22f3a6febae14.js
200 OK 10 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/12101.b6f19cd22f3a6febae14.js
IP
File type ASCII text, with very long lines (12284)
Hash dad8566ff14eb5d79c0c3a2f92f7f0f4
575745423e62821b131cf3786184c0d14ea44e8f
42401692a8b372cf7b1e738d99b17dfe95211e018d34f91c30a0dd9441e635b5
GET /app/website/js/12101.b6f19cd22f3a6febae14.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Thu, 05 Jan 2023 16:44:45 GMT
x-rgw-object-type: Normal
etag: W/"7426644e8d53e29068fe96a9c8885cf3"
x-amz-request-id: tx000000000000056e081b3-0063b6fee6-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/12101.b6f19cd22f3a6febae14.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b9906ca77c5b5b32c940fae40ed99b4c39c7bcc
x-request-id: 210e930a8e8d8326283c4a563b6d75ef
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 395792
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.871414,VS0,VE6
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10082
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js
200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/86433.0cf032f4de4b0c36930a.js
IP
File type ASCII text, with very long lines (14371)
Hash 96e92269cc99556031fabc9e73733461
ff9ac5aa57bdd80b86c52d29b4738edbf46af7de
14bfa005a0baa49d32ca485037f87619d0ed448b09af1d2f9332af9bc21da270
GET /app/website/js/86433.0cf032f4de4b0c36930a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2022 20:02:21 GMT
x-rgw-object-type: Normal
etag: W/"0ca6ec9c9ed1cfaf0a675d812cfc850c"
x-amz-request-id: tx0000000000000436b0bea-006390f1ae-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/86433.0cf032f4de4b0c36930a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 1908a46703d61d983d1f86290ee1e0888a429251
x-request-id: 7103ad529ee145fdb87d921627e2eae3
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 453140
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.878325,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12941
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/65125.00efc230fb403fbd9eda.js
200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/65125.00efc230fb403fbd9eda.js
IP
File type ASCII text, with very long lines (6075)
Hash 308874e6e365c9d120a48d24d309ecaa
b82a5d48b229708ec78fb79efc1deb1b1ea46bad
508053c2c4f6a259f87c4ba20f3f979e16a187ee67a7c025791e088448ce793e
GET /app/website/js/65125.00efc230fb403fbd9eda.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 06 Jan 2023 17:22:54 GMT
x-rgw-object-type: Normal
etag: W/"b67d11c49ef38967c9ac6f1c07015bc7"
x-amz-request-id: tx000000000000058753cad-0063b8596f-c696eea-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/65125.00efc230fb403fbd9eda.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: e0e8e52d427ac3b667436e23dfdf05f5
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 24738
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.879373,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6002
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css
200 OK 1.7 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css
IP
File type ASCII text, with very long lines (5436), with no line terminators
Hash 3cd007ca346955ac0cba245458d27fb5
f5be00f74f36e2505a9217a70ffa58dddfb2294f
79c6922ca7e2ccf7968b3df8df9307da91ed8f73e0f33eb4743f862d39b344c4
GET /app/website/css/contact-us-1.5d328cf2df0fd039ff4b.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 01 Dec 2022 17:05:38 GMT
x-rgw-object-type: Normal
etag: W/"294b38fa4e234ab8a0094f0c9b417538"
x-amz-request-id: tx00000000000003da2d349-006388df50-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: becfe0e4db9703c96a455dc2339c357c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 24358
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.881928,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1736
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js
200 OK 791 B URL HTTP/2 cdn3.editmysite.com/app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js
IP
File type ASCII text, with very long lines (1638)
Hash 2d80e865f1df71512989f924d9ab5d3d
9e22b7838107f1acef9a37f275a6b06d3095e74e
9be7dd653b0a42289e2c949d4bb0a1011d78f8b777af26538343baa9d204ccd1
GET /app/website/js/contact-us-1.d29a1c0719d9da0dc41f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:18 GMT
x-rgw-object-type: Normal
etag: W/"9ce8c2632e7b61c895e304a0bbbb31d0"
x-amz-request-id: tx00000000000002109beb3-006356f8a8-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/contact-us-1.d29a1c0719d9da0dc41f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 0b3e7d39124d9919fbbff77182486e43
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 15055
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.882791,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 791
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js
200 OK 6.0 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/95283.44172b5777108b073121.js
IP
File type ASCII text, with very long lines (11924)
Hash 8ad847b73830f3ede30562fd222bf746
44e0dba76769e0b427fafe49550250b3691ce965
0de272e980f4373cd645be5e53de24d301c86cd37c0499339930accc46b12f92
GET /app/website/js/95283.44172b5777108b073121.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 15:58:40 GMT
x-rgw-object-type: Normal
etag: W/"563306feb4cf49a99e43e8c44d36578a"
x-amz-request-id: tx00000000000004d47b380-0063a1dc29-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/95283.44172b5777108b073121.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 5a979950f571f20c31c693dc4002453f29734a10
x-request-id: 0475bf190bb36c85b3bb926a3f53dbe6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 1781078
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.890335,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6018
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/9918.30697d364261dff00942.js
200 OK 12 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/9918.30697d364261dff00942.js
IP
File type ASCII text, with very long lines (12134)
Hash b584008a1f0d629d74d9fc3215020169
551a99d643aa33ab1f62d77f0bbfd0d2986112bd
8976210bf8a8253d5de3ac239899b3b130762a2a17645e9363fbc5ff87076f8a
GET /app/website/js/9918.30697d364261dff00942.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 06 Jan 2023 17:22:54 GMT
x-rgw-object-type: Normal
etag: W/"eba71739d2c848030a61d51f615cf3ca"
x-amz-request-id: tx000000000000057715880-0063b8595a-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/9918.30697d364261dff00942.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 21a345688c10c921dba7a437bb0211486ebff07d
x-request-id: 679c9d4d0f14b2a27f582e9f4257dfef
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 307261
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.891509,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11756
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/footer-7.fe0e7215100f4b62e867.css
200 OK 3.6 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/footer-7.fe0e7215100f4b62e867.css
IP
File type ASCII text, with very long lines (12671), with no line terminators
Hash 92b2638f7e1663c518153600973601cb
23c290e965ca67e9e0c38c5560b275b44b9eed8b
c609ce3cec8a17b2523d60e1dc6db408ce55e8c3e9ad43c2359766a02a960c46
GET /app/website/css/footer-7.fe0e7215100f4b62e867.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 05 Jan 2023 19:23:07 GMT
x-rgw-object-type: Normal
etag: W/"be087710d8d5db88df05014d8ccb2995"
x-amz-request-id: tx000000000000057c4fb93-0063b723f7-c699baa-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 74e771a075d040a4f97cbabf4dd403ae
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 18255
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.906755,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3583
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/footer-7.37a241c2947cefd03bfc.js
200 OK 1.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/footer-7.37a241c2947cefd03bfc.js
IP
File type ASCII text, with very long lines (4862)
Hash b16de8bcc4be647d8028328eea812192
471722048d6dbac50b8873f78380775719d7097a
f13bf8606f8bd4d12a8115b70de70ea75edbd401bd25db7560542cf88668e8b5
GET /app/website/js/footer-7.37a241c2947cefd03bfc.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 20:40:19 GMT
x-rgw-object-type: Normal
etag: W/"ad9430fe5f7a13045db57a3384fef3ad"
x-amz-request-id: tx00000000000001fe4dc4a-006356f89b-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/footer-7.37a241c2947cefd03bfc.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 46ebe6a8907b6e275626bb67fb1b6e6a
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:28 GMT
via: 1.1 varnish
age: 11180
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.907451,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1292
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
200 OK 351 B URL HTTP/2 cdn3.editmysite.com/app/website/css/free-footer.86d148e5cb2be7f08d49.css
IP
File type ASCII text, with very long lines (626), with no line terminators
Hash ee20922f55875dd45d7acae546cadedc
491672dcd84153d29c9e2346e0f78d1fef5e729d
6594eb11c5c147a510920933dbd3177b6678ce61f0bdc38a6377761534792336
GET /app/website/css/free-footer.86d148e5cb2be7f08d49.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"607e0fd2b514ffdc06c62b1eb1bc428b"
x-amz-request-id: tx00000000000005ade59b5-0063bc962b-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
x-request-id: 9449735b6f4110aa66c8201596855f25
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:29 GMT
via: 1.1 varnish
age: 29593
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.024230,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 351
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/free-footer.2ac40998d539d277ad52.js
200 OK 3.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/free-footer.2ac40998d539d277ad52.js
IP
File type ASCII text, with very long lines (7493)
Hash 83c7ec55b600fcac0984162ee94dfd94
c1c339ec84fe40007d6a933f17f05d2cf40374a3
c5dbf96f42f769c25b77f092bc49aebe48f63a56debebd2e86a49e5b4a86a9e0
GET /app/website/js/free-footer.2ac40998d539d277ad52.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 06 Jan 2023 17:22:54 GMT
x-rgw-object-type: Normal
etag: W/"426a050a0375e9a7ed9f8a707a117e92"
x-amz-request-id: tx000000000000057a95835-0063b8595e-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/free-footer.2ac40998d539d277ad52.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: ce471935a695a476a47b14ad81a7d8ceecf2e364
x-request-id: 8034d01feb99b7124bfc137cbeacd20d
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Tue, 10 Jan 2023 06:46:29 GMT
via: 1.1 varnish
age: 307191
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673333189.024727,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3245
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1892
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 10 Jan 2023 06:46:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f0bca798-7201-43a3-93d7-b31b13a96a7c; Expires=Wed, 10 Jan 2024 06:46:29 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://bt-server-104707.square.site
access-control-allow-credentials: true
X-Firefox-Spdy: h2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-2b98ac0&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=6a55b5f4-58c8-4df5-b174-ec43c2469e73&batch_time=1673333175097
202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-2b98ac0&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=6a55b5f4-58c8-4df5-b174-ec43c2469e73&batch_time=1673333175097
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 27d075d00cb1bbac86c1406defa65d00
bcf46a7e09173d63febf8d044f7b6b447b0b2e12
4f81af65267bcd0be4ad773935eef55b138bd928e123860019d0a487af99bf08
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-2b98ac0&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=6a55b5f4-58c8-4df5-b174-ec43c2469e73&batch_time=1673333175097 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15825
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Tue, 10 Jan 2023 06:46:29 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-2b98ac0&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=eddfc66d-f86a-4f2a-b8e8-cf17bda1591c&batch_time=1673333175575
202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-2b98ac0&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=eddfc66d-f86a-4f2a-b8e8-cf17bda1591c&batch_time=1673333175575
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 790de7d06cca6f44914519e0c71e5090
eda35b3fb04bf7dc5a3f0d9ece3f41ea72dc4e77
f6a75dcbcfc4836c7a1f5a60deae58712519965682a6f79ae5a23bdc4484cb5c
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.21.2%2Cenv%3Aproduction%2Cservice%3Asquare-online-buyer-journey%2Cversion%3Aprime-2b98ac0&dd-api-key=pubc0f9d721a4f01e74b0453dd99e44a542&dd-evp-origin-version=4.21.2&dd-evp-origin=browser&dd-request-id=eddfc66d-f86a-4f2a-b8e8-cf17bda1591c&batch_time=1673333175575 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15827
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Tue, 10 Jan 2023 06:46:29 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
200 OK 182 B URL HTTP/1.1 bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder]
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f6b6b81dd3714cd388808342e960a10
f34bc92a2c7a4dfe56bd6f069ad601e6a61e3b61
2eb22bb7b96aaee11236fcf99e822ede29d3a2ddf2d6f019bb70005b5a1540ef
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getCurrentOrder] HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6ImdvWXZZMVJZWm5TQTkzXC9Ueko1SWpnPT0iLCJ2YWx1ZSI6IjcwdlMyaUdlZkxWQThTbzhuMVFIdlZSOFJjWkRlb0dJTGhBbFwvZVZHa3ZIdnNOeHBiakJlZ1pzY0docXE2ZnlENWtQWlpyZUVlcFwvWE54bjcrY2cwVlRBWnV5MmRPUm0xNjA4ZkZHb3dyMGNvOXY4c0VaMnBNbzFLbWdsYTZrQXMiLCJtYWMiOiJjNjBiN2UxMzMxYWRkNmFkNmU4NzJlMjg1NDZlYzM3OGY3ZDhmMjFlODQyZDY2NmM1Yzk1Yjk2YWIyZGNlYjJkIn0=
Content-Length: 89
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6ImdvWXZZMVJZWm5TQTkzXC9Ueko1SWpnPT0iLCJ2YWx1ZSI6IjcwdlMyaUdlZkxWQThTbzhuMVFIdlZSOFJjWkRlb0dJTGhBbFwvZVZHa3ZIdnNOeHBiakJlZ1pzY0docXE2ZnlENWtQWlpyZUVlcFwvWE54bjcrY2cwVlRBWnV5MmRPUm0xNjA4ZkZHb3dyMGNvOXY4c0VaMnBNbzFLbWdsYTZrQXMiLCJtYWMiOiJjNjBiN2UxMzMxYWRkNmFkNmU4NzJlMjg1NDZlYzM3OGY3ZDhmMjFlODQyZDY2NmM1Yzk1Yjk2YWIyZGNlYjJkIn0%3D; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333175.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750; websitespring-xsrf=eyJpdiI6IkpNRVV2Y21mRExGSFBENXVNSFcrcVE9PSIsInZhbHVlIjoiMEUweUx4bEY5ZkFXeDFkNUZnMFhmMGdzcmNUcHM5eXpkdWF1VVAwOGViQjZWYU5VMkNPUjQ4V3FUampNWWVrRE5weGxiQ2I4cnR3ZkRKcXpDWlp1MDY0QlJtbkdjUG5FSksxd1k2bHFMc0UzMHlRODdzN0dlYmtmcEtSc21Ld2QiLCJtYWMiOiI5ZmQxZGE1YmZkZmJmMTA0NThlYjNiZWVlNWY2MjQxNWMxZWQ5ZDU2NzdlMDNkODBjZDg5NzIxNWFiOGNlYTAxIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 10 Jan 2023 06:46:29 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu46.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 182
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
200 OK 79 B URL HTTP/1.1 bt-server-104707.square.site/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable]
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 26e70d9925604cbe0c7e866fc54d87f4
ef5b3fb91cf2534cbf57806d14b21f0a5ae5c259
c0e7b562566962eced45cdf3319b692c55f3df7c3c6d39436a9d21bae2d2e049
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::hasCouponsAvailable] HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Client-Application-Name: website
X-XSRF-TOKEN: eyJpdiI6ImdvWXZZMVJZWm5TQTkzXC9Ueko1SWpnPT0iLCJ2YWx1ZSI6IjcwdlMyaUdlZkxWQThTbzhuMVFIdlZSOFJjWkRlb0dJTGhBbFwvZVZHa3ZIdnNOeHBiakJlZ1pzY0docXE2ZnlENWtQWlpyZUVlcFwvWE54bjcrY2cwVlRBWnV5MmRPUm0xNjA4ZkZHb3dyMGNvOXY4c0VaMnBNbzFLbWdsYTZrQXMiLCJtYWMiOiJjNjBiN2UxMzMxYWRkNmFkNmU4NzJlMjg1NDZlYzM3OGY3ZDhmMjFlODQyZDY2NmM1Yzk1Yjk2YWIyZGNlYjJkIn0=
Content-Length: 77
Origin: https://bt-server-104707.square.site
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6ImdvWXZZMVJZWm5TQTkzXC9Ueko1SWpnPT0iLCJ2YWx1ZSI6IjcwdlMyaUdlZkxWQThTbzhuMVFIdlZSOFJjWkRlb0dJTGhBbFwvZVZHa3ZIdnNOeHBiakJlZ1pzY0docXE2ZnlENWtQWlpyZUVlcFwvWE54bjcrY2cwVlRBWnV5MmRPUm0xNjA4ZkZHb3dyMGNvOXY4c0VaMnBNbzFLbWdsYTZrQXMiLCJtYWMiOiJjNjBiN2UxMzMxYWRkNmFkNmU4NzJlMjg1NDZlYzM3OGY3ZDhmMjFlODQyZDY2NmM1Yzk1Yjk2YWIyZGNlYjJkIn0%3D; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333175.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750; websitespring-xsrf=eyJpdiI6IkpNRVV2Y21mRExGSFBENXVNSFcrcVE9PSIsInZhbHVlIjoiMEUweUx4bEY5ZkFXeDFkNUZnMFhmMGdzcmNUcHM5eXpkdWF1VVAwOGViQjZWYU5VMkNPUjQ4V3FUampNWWVrRE5weGxiQ2I4cnR3ZkRKcXpDWlp1MDY0QlJtbkdjUG5FSksxd1k2bHFMc0UzMHlRODdzN0dlYmtmcEtSc21Ld2QiLCJtYWMiOiI5ZmQxZGE1YmZkZmJmMTA0NThlYjNiZWVlNWY2MjQxNWMxZWQ5ZDU2NzdlMDNkODBjZDg5NzIxNWFiOGNlYTAxIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 10 Jan 2023 06:46:29 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu27.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 79
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: application/json
bt-server-104707.square.site/uploads/b/de5a69656928d3429d785c27a091b4b2853cb78d82129bb441218f099490b3f1/BT_logo_2019.svg_1670945132.png?width=400
200 OK 13 kB URL HTTP/1.1 bt-server-104707.square.site/uploads/b/de5a69656928d3429d785c27a091b4b2853cb78d82129bb441218f099490b3f1/BT_logo_2019.svg_1670945132.png?width=400
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash c8e8f13655660c51a3800b53f9b7b973
9f2d99f6058a839683602cb9a91bb5917ddfda78
c674ad1fe09d3b477dccdbd41b968ce9bb38552b4b9fd85a664a406f26a6b252
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /uploads/b/de5a69656928d3429d785c27a091b4b2853cb78d82129bb441218f099490b3f1/BT_logo_2019.svg_1670945132.png?width=400 HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6ImdvWXZZMVJZWm5TQTkzXC9Ueko1SWpnPT0iLCJ2YWx1ZSI6IjcwdlMyaUdlZkxWQThTbzhuMVFIdlZSOFJjWkRlb0dJTGhBbFwvZVZHa3ZIdnNOeHBiakJlZ1pzY0docXE2ZnlENWtQWlpyZUVlcFwvWE54bjcrY2cwVlRBWnV5MmRPUm0xNjA4ZkZHb3dyMGNvOXY4c0VaMnBNbzFLbWdsYTZrQXMiLCJtYWMiOiJjNjBiN2UxMzMxYWRkNmFkNmU4NzJlMjg1NDZlYzM3OGY3ZDhmMjFlODQyZDY2NmM1Yzk1Yjk2YWIyZGNlYjJkIn0%3D; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333175.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750; websitespring-xsrf=eyJpdiI6IkpNRVV2Y21mRExGSFBENXVNSFcrcVE9PSIsInZhbHVlIjoiMEUweUx4bEY5ZkFXeDFkNUZnMFhmMGdzcmNUcHM5eXpkdWF1VVAwOGViQjZWYU5VMkNPUjQ4V3FUampNWWVrRE5weGxiQ2I4cnR3ZkRKcXpDWlp1MDY0QlJtbkdjUG5FSksxd1k2bHFMc0UzMHlRODdzN0dlYmtmcEtSc21Ld2QiLCJtYWMiOiI5ZmQxZGE1YmZkZmJmMTA0NThlYjNiZWVlNWY2MjQxNWMxZWQ5ZDU2NzdlMDNkODBjZDg5NzIxNWFiOGNlYTAxIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 06:46:29 GMT
Content-Type: image/webp
Content-Length: 12886
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "1HJQK77FJ7iQ+3d+/xQEd96cG6LdewjAeFtbxooeXNw"
Fastly-Io-Info: ifsz=61025 idim=1200x1200 ifmt=png ofsz=12886 odim=400x400 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx000000000000028fccc9a-006364e954-c695612-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z2dab
X-Storage-Object: 2dab32601561a124269ccf097e2c78bf13f40cf34a660f1d8a50e49834e8f79f
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 3130
X-Served-By: cache-sjc10046-SJC, cache-pao17445-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1673333189.240379,VS0,VE1
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn14.sf2p.intern.weebly.net
bt-server-104707.square.site/app/website/square.ico
200 OK 6.5 kB URL HTTP/1.1 bt-server-104707.square.site/app/website/square.ico
IP
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /app/website/square.ico HTTP/1.1
Host: bt-server-104707.square.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt-server-104707.square.site/
Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6InhCbUZlT3Y0bUJtWnN6c0k5aUFMdXc9PSIsInZhbHVlIjoidmhzWlN5RHhVc29NSHZpZU05UWZoUXdnNTFlYXJOOTg2MjhGc1lBYWR1eVZVWDF4NXNMVlQzSEVpRzhEVTB6cFJGTUdnQWpcLzlXQ0dGb3I3dWx4cUwzOHRHenNpVG5oSytwQnNOUlREOEVaR2lcL2xyWlFic0VpR2tkaG5GTXdkTyIsIm1hYyI6IjBlNzY1YmQzNWZhM2U2ZTU0NWU0NzM0NGY3ZmQ2MTgyYjYxM2EwMmNkNzdkNjc0ZTE1MzZiNjhmMGE5N2NkZTkifQ%3D%3D; XSRF-TOKEN=eyJpdiI6ImdvWXZZMVJZWm5TQTkzXC9Ueko1SWpnPT0iLCJ2YWx1ZSI6IjcwdlMyaUdlZkxWQThTbzhuMVFIdlZSOFJjWkRlb0dJTGhBbFwvZVZHa3ZIdnNOeHBiakJlZ1pzY0docXE2ZnlENWtQWlpyZUVlcFwvWE54bjcrY2cwVlRBWnV5MmRPUm0xNjA4ZkZHb3dyMGNvOXY4c0VaMnBNbzFLbWdsYTZrQXMiLCJtYWMiOiJjNjBiN2UxMzMxYWRkNmFkNmU4NzJlMjg1NDZlYzM3OGY3ZDhmMjFlODQyZDY2NmM1Yzk1Yjk2YWIyZGNlYjJkIn0%3D; PublishedSiteSession=eyJpdiI6InhrZTBZenZzOGZOcU1FVUVnNEkrSnc9PSIsInZhbHVlIjoiczREV29zY2M2MTBaUCt4UURqRjBXY09PdzJVT2gwXC9YcmtlcnVyYWRoY2pcL3JGNHdMQjFBTWM4R2xqN09DUkNYOE1FUzJUQVpaMjBGVEtMYlFmTjh5bTZtNjVzRndHb2NhcmU3TWxhNlNwS1ZvbWxSbStneUc5ZFJXalM2QmpUSiIsIm1hYyI6ImQyZjEzNjBjZjgwZTFiYTVjNWE3YzhjZTVmYmZjNmUxYjMxMWI0OTQ2MTY3YTIwODhmM2ZkYWEzODZjMGEzYzAifQ%3D%3D; _snow_ses.815e=*; _snow_id.815e=d9b4085d-7c8d-44eb-a7da-a2276b85e3e7.1673333173.1.1673333175.1673333173.2ee8b9d0-45fe-4cd6-8060-e316948d9120; _dd_s=rum=1&id=34d1e8cf-1b60-4208-aec4-0962009afd9b&created=1673333173750&expire=1673334073750; websitespring-xsrf=eyJpdiI6IkpNRVV2Y21mRExGSFBENXVNSFcrcVE9PSIsInZhbHVlIjoiMEUweUx4bEY5ZkFXeDFkNUZnMFhmMGdzcmNUcHM5eXpkdWF1VVAwOGViQjZWYU5VMkNPUjQ4V3FUampNWWVrRE5weGxiQ2I4cnR3ZkRKcXpDWlp1MDY0QlJtbkdjUG5FSksxd1k2bHFMc0UzMHlRODdzN0dlYmtmcEtSc21Ld2QiLCJtYWMiOiI5ZmQxZGE1YmZkZmJmMTA0NThlYjNiZWVlNWY2MjQxNWMxZWQ5ZDU2NzdlMDNkODBjZDg5NzIxNWFiOGNlYTAxIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 06:46:29 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001af9993-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu133.sf2p.intern.weebly.net
X-Revision: 2b98ac0255e2565feb34a06ba4ed599214657d91
X-Request-ID: 69edbc27f469e764712d4e3e94577e9e
199.34.228.40
104.18.21.226
104.110.10.32
93.184.220.29