r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13656
Expires: Wed, 12 Oct 2022 22:46:53 GMT
Date: Wed, 12 Oct 2022 18:59:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 18:49:15 GMT
Expires: Wed, 12 Oct 2022 19:31:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JaIEFm5UAcfHweC5ELrG19okGSUXQVuQYF0L1OaBkTqFEk647zBmzQ==
Age: 602
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bce7a9c1ff7500c4cfad5c3a3581a939
74b8dadf6ead0ce5d1d72e40a2eac554c5f5430c
6c840089371a0e25d60d0d76d6400348b0cdfb5967876c7b88e2b4a2aaf01a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C840089371A0E25D60D0D76D6400348B0CDFB5967876C7B88E2B4A2AAF01A03"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9810
Expires: Wed, 12 Oct 2022 21:42:47 GMT
Date: Wed, 12 Oct 2022 18:59:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YOB09lhTD4MrNUsvQjx7LndSkcwoWhb+VM81RVUrPRFebGwUgZE/I1+b0B061dKOZ78y6DSCIW0=
x-amz-request-id: HHYNF5G2YAA5MT4X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 18:33:27 GMT
age: 1550
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 12 Oct 2022 18:59:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
199.34.228.164302 Found 530 B URL HTTP/1.1 rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7f2118278089cf2bf8b09a5ca2e1dcc6
db6c66d845058e5745f4b38416ca14757c481092
a62a771cd773749f7cb7eec331200dbd9473751a8dacefe13fad9f7428410ad6
Analyzer Verdict Alert fortinet Phishing
GET /sm/includes/diag/b2020123/1/run/emailerror.php HTTP/1.1
Host: rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Wed, 12 Oct 2022 18:59:17 GMT
Location: https://rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Set-Cookie: publishedsite-xsrf=eyJpdiI6InZSWncrNG9mNTdTS09FbzJOZlVkVkE9PSIsInZhbHVlIjoieUFJaFN3OWpQMk01VmtPUStXZWp2VmRvc0RlU28xMDZHbzN2Um55K1lXOFZJT0tkOTBES21ITFBBQmpLbmFuWXhXakxjdktDV0dxYlNIb1FPQUVVQ25PKzhqWFZXRHRrVmhLVGxSc1BKMzJCTUZPakp3bzhUN0ZaeHpxNmtBWkkiLCJtYWMiOiJmMDg4YmNkNTlhZTk2MjI3NDJmZGEyNDgwNjM2OTgwYjdmZjViOTcwMzRjZDg3NGQ2YWVlOGNjZmE1M2UwMWQxIn0%3D; expires=Wed, 26-Oct-2022 18:59:17 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6Imo2MlA5dFpSY3VVZUNPQVZxQjE4dFE9PSIsInZhbHVlIjoiTzg5UzE5V25lU1g1blZucXhaa3J0Z0Q3WVROUmszcHZEaEc5T0pjQ1lhOFhDaHhGRXVCY2RFSUhhc082MVc0UjdGRkZLekpzZ1BUb0Q5eVE2eWdCaVVZSmNiN0NPbTJNeUNDQnY2N2VZVVwvOFRFQkkxQVdUaWVWYk81cUwxV0hYIiwibWFjIjoiZDAyMTI4YmRiNDNlYjQ4NTBlOTA4ODhiNjQ1NGZiOGI2NjIyNWQwNGEzNzFiZTU1ZDQzZmQ4MjEyZGY4ZjgyZSJ9; expires=Wed, 26-Oct-2022 18:59:17 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6IjRQTk41a3hVT2xYQkU0NHV0TU01RXc9PSIsInZhbHVlIjoiWGVQMjByQjJKa2REWm56Q3lmWG1PcGdtTE5rR3hLMUdpZmh3MmxPbCsyQnExWnIwOU9PZkordTl3bHNKeGZGeElzNkpHdGdPVmpGSHV5eHpDTktFSGtGMDI3WE1Qa09BYWhVZkY4UnF2ZnhKODNTOG9EUjFPMlY4UGplOUpUVHQiLCJtYWMiOiJiYjBlZjJkZDY3N2ZjOGQzOWZiN2UzNzNmM2FmZjE4NzAxYTQwYjQzNGM4M2Q5ZTBiZDhjYTE1YzcwMjY1OWNjIn0%3D; expires=Wed, 26-Oct-2022 18:59:17 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu42.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: fd57e5b4fdbe741811ee4a94d7de7cc6
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 12 Oct 2022 18:29:41 GMT
Cache-Control: max-age=3600
Expires: Wed, 12 Oct 2022 18:46:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jP2RuzHNc4RYpV29kKJhfhMo67QYVMog02riwKNM0ZfAwi3xkFn4Gg==
Age: 1776
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63604bda613d148120c491e2f095255f
0fc63ecaff8a0f36dc2a82f3fb187725d0064d69
8478a84e8513fb9afb0d1c369b668bd37ca98943a624ac3a3a69165536bd1748
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6540
Cache-Control: max-age=140191
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 18:59:18 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 09:55:49 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fd4d1a1123844a9553ef635d72374f6a
9c85be7a9cdbfed821e20588faf6094cb3655c36
fd7ceb689fa0c5f3909562f0310bc229b307a468e342f9d41029334fd063beb7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD7CEB689FA0C5F3909562F0310BC229B307A468E342F9D41029334FD063BEB7"
Last-Modified: Tue, 11 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21570
Expires: Thu, 13 Oct 2022 00:58:48 GMT
Date: Wed, 12 Oct 2022 18:59:18 GMT
Connection: keep-alive
rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
199.34.228.164301 Moved Permanently 546 B URL HTTP/1.1 rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 949ec94e8d393b0bf5983e042b78edcf
8abb743381a4dc17dd8d1ad2dd65326f954a7e36
0301f81ada40ad9d1363e4c0792c8fb081f970e8dd756a3e7824db8dc90db4d8
Analyzer Verdict Alert fortinet Phishing
GET /sm/includes/diag/b2020123/1/run/emailerror.php HTTP/1.1
Host: rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 12 Oct 2022 18:59:18 GMT
Location: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Set-Cookie: publishedsite-xsrf=eyJpdiI6Iks3b1J6VTJ5TlRwVUJUcWVHWHdzbXc9PSIsInZhbHVlIjoiK1hPWEU3Z1JSZzdYSGpQR2s4SHFMc1Q1R1UramdGUTJlbXFDaVJ1UGlVSXJ3d1ZKbVU1eGU1WHNySmhcL1ZkN25CcDlza0laM3FqRFlUeGJlbllTdm4rYXBvWXRaWEw0NGdDZ290Mitqb21mVmJVSE1TcEhrYWx0Z2lRTlNGTHFaIiwibWFjIjoiNmJiODZhZjJmMGYzMmZiY2IwZWIzOGNlNTczNjVkNzhlNWM4N2RhMWQ0MjljMTI5OTA4NmIwMDEyOTQ5NmYwMSJ9; expires=Wed, 26-Oct-2022 18:59:18 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6IkFhaXN3Rk8wV1ZFQmd0OHF4VTdMUHc9PSIsInZhbHVlIjoiQ1JwU3VcL2JMSm9LQkpEa3FCVzBmRHJUMG5DVG42czB1dHlCV28yMVwva1RxN1pNTXdrVkZFaW1BNjlyVERUa2oyekpxMkdOWVpiR3ZwY1NCUXNRSHlRTzVSZHR3a08wOHdGQUNIeE9XOTdUdGdhakQyVnRpZmpsNEVYVk84NThiciIsIm1hYyI6IjBhYjA5NGNiNWUwNWQwNTQ2NzE0ZTE3NThiMDI4ZjlhMGI2ZTJkNzk3MjY0MTc5Yzg0M2UwMjBkMTQ0NGNhYzYifQ%3D%3D; expires=Wed, 26-Oct-2022 18:59:18 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6IjMxQlZubjhpKzNvcDZrbnA4THJzc2c9PSIsInZhbHVlIjoiUEpHMTVHRlJBREc0eGp2ejBFSW5Cd2E1dStpalcwZ0pOTzYwYVBNSnNJK2RpNzlMU1Q2N2FGT1pYTU5zNEVvUllNVUhMazQ0eHdhckp6bDZSQ1VGd1dJYlltck84MWpvXC9ocW9JUmRzTHdiTmM3QkRLTlV0WFdQVXEwTk9KdUlpIiwibWFjIjoiZjRhNGUyYWQ4YWJlNjUzZjNjNzc1ZjY5MWRkZmY0MzMzNjI4NmIzZGY1Y2E2NmNlZDRhN2RjYTlmZTU3MTc0YSJ9; expires=Wed, 26-Oct-2022 18:59:18 GMT; Max-Age=1209600; path=/; httponly
X-Host: grn74.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 660ffa3ae2fd552cb15f308e4cda6f4a
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MfyaqIPPtk5gY69HwuQmaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FLlcKEAwgDuVjqPPZ6UTJiSDCkg=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11867
Expires: Wed, 12 Oct 2022 22:17:06 GMT
Date: Wed, 12 Oct 2022 18:59:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11867
Expires: Wed, 12 Oct 2022 22:17:06 GMT
Date: Wed, 12 Oct 2022 18:59:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11867
Expires: Wed, 12 Oct 2022 22:17:06 GMT
Date: Wed, 12 Oct 2022 18:59:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11867
Expires: Wed, 12 Oct 2022 22:17:06 GMT
Date: Wed, 12 Oct 2022 18:59:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZKsi1hYgZdJQNWpphaMVLfpg69dC93J575Y2RsOzFV3ZzBb6x-nrew==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:42:26 GMT
age: 76613
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f78379e6bde371b492c950402bcc39e
53a7502d8932c515aa09055c5cf8f2d2242e4398
241016bbd3cebc009f63dff2773c1c7fdb68fa941ab62b368d5e023b9155fa37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5252
x-amzn-requestid: b4ef9c4f-7ca4-42c9-a928-b0b8aa3cc695
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BUaEtBoAMF8Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e282-455619be605fa91977c66df7;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:39:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: u8SRxkVzSO3pnQB_FibQBfwzvJ2uiT9YQzQI4_ZVMxgdED9Zsir8qQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:09:04 GMT
age: 75015
etag: "53a7502d8932c515aa09055c5cf8f2d2242e4398"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbb15fc1-cc74-4918-8e82-688ede90f3df.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbb15fc1-cc74-4918-8e82-688ede90f3df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a61ea2d6a9b25c5567339c60f503bc6
19dd911262d941074183edd995d59abc84a42cd5
0ff68c4572b0eda2ddce4ce76b39cd268dcf5182acdaacb0274c23e2c5f50b3d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbb15fc1-cc74-4918-8e82-688ede90f3df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12284
x-amzn-requestid: 7df5e0e3-155f-4cfd-b1e1-62310edf4516
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3B7JFbxIAMFxnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e37a-0882e1333f26304f1d89c3c9;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:43:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7WAk09ANiNHmH9U2PMQRQ8WjASq6GKpEw-zsLtg97Y-DedBaEumK5A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:59:07 GMT
age: 75612
etag: "19dd911262d941074183edd995d59abc84a42cd5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d31330d47548d966e50813d7e2253551
ec0a371cca2d4e43f3375dd6b699478c5af62884
309f2cf9ccd62d5c2fd8713836b602317875f4273ef560f3bf3d681aa868b9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9325
x-amzn-requestid: 6a0388e5-97d6-42f4-b54d-a3f4826f2293
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxMaDE2JoAMFieg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63438dd9-76ff69230ce03c033b35a4c4;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 03:13:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oUdj3LVRzke7i9j4pQRCGqss6LC-l1Qf4gvtAnrM9ZH1Bzu6Adezuw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:22:04 GMT
age: 52635
etag: "ec0a371cca2d4e43f3375dd6b699478c5af62884"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50df13c8-d4e3-4d87-8794-332894dfce82.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50df13c8-d4e3-4d87-8794-332894dfce82.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5d47115d404a4b49a15c5aa29f132c2
22a32b863ce79c6165cc90e998f1498bf9e74fd0
549725a62e4c15820c47249ae933120bbb091a55331be511b486307e33ec59c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50df13c8-d4e3-4d87-8794-332894dfce82.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7108
x-amzn-requestid: 9f8e92e1-b64f-46b4-8a87-4d0e5c21bdaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BzOEmzoAMFsoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e347-3ec5e4d50d2e14a17f88a64d;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:42:31 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 07WNuyF4EIA2AAZyB4kU669K49Jzqys2YvkfnzEb2aIn3Dq6K_CT2g==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:09:12 GMT
age: 75007
etag: "22a32b863ce79c6165cc90e998f1498bf9e74fd0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74c4905d-ef25-43db-8882-67009cd34f1a.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74c4905d-ef25-43db-8882-67009cd34f1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eda06240feabfa1b019765fe963c2d9c
3bbdd5560213e9b49ab7c079c5f2549d68890720
cd3724bfc1355b419c46df1259bfa40b4b4517a81bd45a4392d34e22c14a3d6e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74c4905d-ef25-43db-8882-67009cd34f1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3985
x-amzn-requestid: 6da73a65-c346-4040-9a03-63d5d6845adf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z1Cr1HeVoAMFubg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634517e5-34af0c8d6dc8218963b7319c;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 07:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LAjdvQ29NhOnJjwigVkIjb7vx5tCPJPrHOOPmUD5Vh9N45WN4ZZXCg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 07:45:22 GMT
age: 40437
etag: "3bbdd5560213e9b49ab7c079c5f2549d68890720"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
199.34.228.164404 Not Found 11 kB URL HTTP/1.1 www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
IP 199.34.228.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26700)
Hash 524e16a86e9cdaae4b33da346d084ca8
cd70732b47122129ee62827237aa7cd51f46f07f
d88df741dd5c31bea5d99dbe46c0b1f7abb32f387bcc711e213cd203f0fb5ad0
Analyzer Verdict Alert fortinet Phishing
GET /sm/includes/diag/b2020123/1/run/emailerror.php HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Wed, 12 Oct 2022 18:59:19 GMT
Set-Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; expires=Wed, 26-Oct-2022 18:59:19 GMT; Max-Age=1209600; path=/
XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; expires=Wed, 26-Oct-2022 18:59:19 GMT; Max-Age=1209600; path=/
PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; expires=Wed, 26-Oct-2022 18:59:19 GMT; Max-Age=1209600; path=/; httponly
X-Host: blu127.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 6f5e7819738d8391ec6ae59df96cdccd
Content-Encoding: gzip
cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.c42e2910acea08b799a0.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/css/wcko.c42e2910acea08b799a0.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (64270), with no line terminators
Hash 4b822f8c9adec981f07dace2f0a95819
f66e4c1b911e6152422f4754232c88e24006ac7c
66b64009278afc08ffd5b497a7f8407dd8e4c6cd773ade96100a542cd56be3a1
GET /app/checkout/assets/checkout/css/wcko.c42e2910acea08b799a0.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 11 Oct 2022 19:52:25 GMT
x-rgw-object-type: Normal
etag: W/"ca25c7a631d1a348ec726733d970771a"
x-amz-request-id: tx000000000000017017d6b-006345c9fe-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 83019
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665601159.487757,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 22830
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/site.5902fddad3b7aa1038b3.css
151.101.85.46200 OK 23 kB URL HTTP/2 cdn3.editmysite.com/app/website/css/site.5902fddad3b7aa1038b3.css
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (65074), with no line terminators
Hash 5b1d2509c94de8d1ed5915995d601ad9
72866d7e4e964a4ab602d3e1c7f33a83b3585078
45e2b8cbe4e6827597f419629c4227e739b25b642df82a41aecaa8205cac0c87
GET /app/website/css/site.5902fddad3b7aa1038b3.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 11 Oct 2022 14:32:51 GMT
x-rgw-object-type: Normal
etag: W/"a655cdf1ad98713d4a60425636bd62f7"
x-amz-request-id: tx000000000000016dae43c-0063457eec-c695612-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 51ba0f8daabfd4f3ab5a05b51886459e3b31c3f4
x-request-id: ba3f9933eefea2e5a47bc0f1ea5c352b
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 102205
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 34
x-timer: S1665601159.487508,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 23173
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
age: 1160438
x-served-by: cache-sjc10077-SJC, cache-bma1628-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 5730
x-timer: S1665601159.497013,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
151.101.85.46200 OK 5.0 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (11882), with no line terminators
Hash 20a4e66f534b80396d40bbc4291b2172
d7c962996f2715d94483be2bf9b644c7185d7ec7
0f19e8ad1c9bd5ae2ae5141f31b4e491bb460558da0ac51cd402964e716880ac
GET /app/checkout/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 29 Mar 2022 18:09:33 GMT
x-rgw-object-type: Normal
etag: W/"40372ca3b0cfa19f4e5d664243108364"
x-amz-request-id: tx00000000000005ce1aaac-0062434bb9-a9f1ce7-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/js/system.min.edf02612a6bb463d71cb5efc5a4b495e.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 1964351
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1665601159.493339,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4998
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/runtime.e11d011401025dd45e2c.js
151.101.85.46200 OK 25 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/runtime.e11d011401025dd45e2c.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (50041)
Hash 0a1808445921c19cdc0d03ffcb202a88
135a00a7c6d8411ce2ff7652b7f9aa36c7eb173b
a20eccdb407235e50aa78a9e38dbc16b268118c289775af269bf1a262b6eff39
GET /app/website/js/runtime.e11d011401025dd45e2c.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 11 Oct 2022 23:10:14 GMT
x-rgw-object-type: Normal
etag: W/"d13f2ea628a95893cef6f427319c5df9"
x-amz-request-id: tx00000000000001712a02f-006345f82c-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/runtime.e11d011401025dd45e2c.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 51ba0f8daabfd4f3ab5a05b51886459e3b31c3f4
x-request-id: 0ef4a4ba0d80502a8dad3bcba6154f56
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 71219
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1665601159.493310,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 24706
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/languages/en.eec52ca00960021e7644.js
151.101.85.46200 OK 151 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/languages/en.eec52ca00960021e7644.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 151 kB (151009 bytes)
Hash 269fac3571e451ac3c99906aa80a85f0
120556af152905813785cc6e81afc1d569e9eafb
34938b14d779feb120d5a6675788d98b765a178634b8649049152fc9617052cd
GET /app/website/js/languages/en.eec52ca00960021e7644.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 11 Oct 2022 13:49:51 GMT
x-rgw-object-type: Normal
etag: W/"503ca5ef034586f68fb93c774587eb29"
x-amz-request-id: tx000000000000015d7d6a6-00634574e3-c67eadd-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/languages/en.eec52ca00960021e7644.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 2db97dee92fe082bdc3fb7d7ffe0b3248c7f0f28
x-request-id: 39c71d7cb8b24816b4375c5b720f8e03
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 104836
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601159.495137,VS0,VE11
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 151009
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/site.13617e1f75a3da1a6d1f.js
151.101.85.46200 OK 574 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/site.13617e1f75a3da1a6d1f.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (59409)
Size 574 kB (573811 bytes)
Hash 12bc9f31cd8a3c78ece08eb726c7bfd9
77acc4c0e23d211db67573fb289348b5fc8187bf
dc6bea4e638613cd96ee7954b00af12cecc4030f0535446879c8844f2e456d62
GET /app/website/js/site.13617e1f75a3da1a6d1f.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 11 Oct 2022 23:10:14 GMT
x-rgw-object-type: Normal
etag: W/"161ecc0f680ef325aa4289f2136fcc41"
x-amz-request-id: tx00000000000001712a145-006345f82e-c699baa-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/site.13617e1f75a3da1a6d1f.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 51ba0f8daabfd4f3ab5a05b51886459e3b31c3f4
x-request-id: 2e8ed19ca5851e746d8cc119203e4bd6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 71218
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.589181,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 573811
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.b2b22bbf0ad7201568030123dabf6c94.js
151.101.85.46200 OK 3.5 kB URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/imports.en.b2b22bbf0ad7201568030123dabf6c94.js
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (16702), with no line terminators
Hash 6df862f68429a58b7264833d05916090
084af6f86af973cd63f81cb7861154c4fbd88194
befd09cbf937525e4a5417c8ccbc448a37f74122d69ef071eae82a8dab5ed64f
GET /app/checkout/assets/checkout/imports.en.b2b22bbf0ad7201568030123dabf6c94.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rebelcatalog.com/
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 11 Oct 2022 19:52:24 GMT
x-rgw-object-type: Normal
etag: W/"b2b22bbf0ad7201568030123dabf6c94"
x-amz-request-id: tx00000000000001605da67-006345ca00-c6aed46-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/checkout/public/assets/checkout/imports.en.b2b22bbf0ad7201568030123dabf6c94.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 83019
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.701387,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3522
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
151.101.85.46200 OK 317 B URL HTTP/2 cdn3.editmysite.com/app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json
IP 151.101.85.46:0
File type JSON data\012- , ASCII text, with very long lines (1542), with no line terminators
Hash 27ee0fccb172f6ed41222a495a62205c
dba3bf87197abf047d477bf26fd8530fa086f194
327fd4f3b36cfc138c5adc30543b90e617a1c1b4eab51f39c9c53f81190e632a
GET /app/checkout/assets/checkout/locale-imports-map.8404718760b80e501dea19d65a489ea9.json HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rebelcatalog.com/
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
last-modified: Thu, 29 Sep 2022 19:39:07 GMT
etag: W/"6335f45b-606"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:19 GMT
via: 1.1 varnish
age: 1120207
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1665601160.702326,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 317
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/41630.8059ffd783277d37114a.js
151.101.85.46200 OK 4.2 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/41630.8059ffd783277d37114a.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (5681)
Hash 512d4a3a0c455070baffb33af42676c1
f5c512ca58a3553f7e19b0773edf5dbf036dfbdd
f02cff80a91c9ba4adca7d1b2cf2bc463eec2fd622c06496263e95e272f1839a
GET /app/website/js/41630.8059ffd783277d37114a.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Tue, 11 Oct 2022 23:10:14 GMT
x-rgw-object-type: Normal
etag: W/"3f855bb1f7fa5bf67bc632fea426120a"
x-amz-request-id: tx00000000000001722a6b1-006345f82e-c669cc6-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/41630.8059ffd783277d37114a.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 51ba0f8daabfd4f3ab5a05b51886459e3b31c3f4
x-request-id: 25191d9310d75acc6e311b64e20be303
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 71214
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1665601160.055515,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 4198
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/css/standard-page.330abfc8608ec69de0f5.css
151.101.85.46200 OK 395 B URL HTTP/2 cdn3.editmysite.com/app/website/css/standard-page.330abfc8608ec69de0f5.css
IP 151.101.85.46:0
File type ASCII text, with very long lines (857), with no line terminators
Hash 8d7fcccab55897af77b9e87a64f57b20
8fabb83941907077788025f05cb325c0c7340794
ca291141827c7605d3815f5bd0b2fab261f6f815d9b5661dfeae7153d40bc346
GET /app/website/css/standard-page.330abfc8608ec69de0f5.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Thu, 14 Jul 2022 19:54:09 GMT
x-rgw-object-type: Normal
etag: W/"caab02dd387044f4022e40ee2c3b28f9"
x-amz-request-id: tx00000000000000a87d4bb-0062d074c7-c03521c-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: 1322644d72277284f0b3cbb412217e0c
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 1952568
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.056989,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 395
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/js/standard-page.6a87b10b2cae7ff0fb45.js
151.101.85.46200 OK 1.3 kB URL HTTP/2 cdn3.editmysite.com/app/website/js/standard-page.6a87b10b2cae7ff0fb45.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2417)
Hash a8209209b41ed7c966f0ee770dd66821
8a31ed4447da257b70abe6221c6dc33d8f4a3a15
ff1b3646d10613b3b63626dbed71f43c188f3909964e9c87b09ff3a5db07eb64
GET /app/website/js/standard-page.6a87b10b2cae7ff0fb45.js HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Sep 2022 17:31:59 GMT
x-rgw-object-type: Normal
etag: W/"b5d01c5a8984ba82b1cb433ed0adb4c9"
x-amz-request-id: tx00000000000000284f728-006324b383-c695612-sfo1
sourcemap: https://private-assets.weebly.net/uploads/c/00e8dbc9-8879-11e9-9040-089e018b1a8c/website/public/js/standard-page.6a87b10b2cae7ff0fb45.js.map
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: d4b041f3e71a2e531677ce339e5c6a96
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 1878572
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.058351,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1274
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 5c0887b1ff926d30bf4129d0fe15aed0
41278cde89375f70718e7b25d5212891b7ac7330
33c6a77becae269afe3f1735f8e403f80b06cea22bcda8aaeda1cd02f41481d0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168366
Date: Wed, 12 Oct 2022 18:59:20 GMT
Etag: "6346ee8f-1d7"
Expires: Fri, 14 Oct 2022 17:45:26 GMT
Last-Modified: Wed, 12 Oct 2022 16:42:55 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uVEbCZtBNEPQfqGRd5zzDSQ49JS5ZAVP2tcJCfjq3m7BQBfKCtUJXw==
Age: 3751
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 5c0887b1ff926d30bf4129d0fe15aed0
41278cde89375f70718e7b25d5212891b7ac7330
33c6a77becae269afe3f1735f8e403f80b06cea22bcda8aaeda1cd02f41481d0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168985
Date: Wed, 12 Oct 2022 18:59:20 GMT
Etag: "6346ee8f-1d7"
Expires: Fri, 14 Oct 2022 17:55:45 GMT
Last-Modified: Wed, 12 Oct 2022 16:42:55 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: L9Mhp1Ge85GlfA3Rye1BZnODX9dfHeoFomOrVuQEnd4GsPjtvV92nw==
Age: 4370
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rebelcatalog.com/
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 12 Oct 2022 18:59:20 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.rebelcatalog.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Work%20Sans/Work%20Sans.css
151.101.85.46200 OK 195 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Work%20Sans/Work%20Sans.css
IP 151.101.85.46:0
Hash 7fb06c78b3d045b69435e41d4aa8b00d
7d7a96e55f29ba50d2824c16f6c8799ff1579d26
eea9c5a974261bee2fc31779e28f0b16d3cef13c8a234b1da5b87db138267a35
GET /app/website/static/fonts/Work%20Sans/Work%20Sans.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Fri, 26 Aug 2022 21:17:07 GMT
x-rgw-object-type: Normal
etag: W/"39d04e6bacfcb8145c5be9abd0910d68"
x-amz-request-id: tx000000000000010eb2a4a-00633b8a5f-c669cc6-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 83b6365c027ad381464856b1585d8e265193d076
x-request-id: baca2f7b57a2eac93bbbda2d45421311
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 753952
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.279843,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 195
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Bookmania/Bookmania.css
151.101.85.46200 OK 237 B URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Bookmania/Bookmania.css
IP 151.101.85.46:0
Hash a7bfa6e299175ea66571100f2b302bbf
bff1ad9b90c534c02f5a55db006a9eb9658e97a6
26054e2bf916811d855e96c793cdb74c6dd4ee8cbd14a424b9353e68d591cac6
GET /app/website/static/fonts/Bookmania/Bookmania.css HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css; charset=utf-8
last-modified: Tue, 17 Sep 2019 17:09:49 GMT
x-rgw-object-type: Normal
etag: W/"db509badf9ed432dd559a20e2d917c95"
x-amz-request-id: tx00000000000003cf0a2d7-00631ff561-c0351c8-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: b5f6a792755d6bb468b8fd7feee991b51d311866
x-request-id: 8214bbf846a14eecbc3d45bdf559abf6
content-encoding: gzip
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 2562343
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.280224,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 237
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Work%20Sans/work-sans-v18-latin-600.woff2
151.101.85.46200 OK 19 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Work%20Sans/work-sans-v18-latin-600.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 18848, version 1.0\012- data
Hash 9942d3192d5c8728bf813d0884347bb4
19fb94ccb65a81418588fa626f12d5522c0fbe95
b5595a0f4045f98ff785b89e3f12ad747b441a0622a41710cdf42163f35d325e
GET /app/website/static/fonts/Work%20Sans/work-sans-v18-latin-600.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Mon, 05 Sep 2022 14:54:37 GMT
x-rgw-object-type: Normal
etag: "9942d3192d5c8728bf813d0884347bb4"
x-amz-request-id: tx00000000000000528b858-0063291ce6-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 35032a5dcd23b76d847b7b81efbde6a22ebda995
x-request-id: d4e8ff4e17667bf109e51be31027e9e7
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 1962402
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.342998,VS0,VE1
access-control-allow-origin: *
content-length: 18848
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Bookmania/b65b5f54-6ce0-4ecc-b056-7c00c1a6b386.woff2
151.101.85.46200 OK 13 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Bookmania/b65b5f54-6ce0-4ecc-b056-7c00c1a6b386.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 13064, version 0.0\012- data
Hash f40ddced00f9af44955f67a1e806f5c9
ca05787507ae07e3ee44d4423566f0d0c60d66b0
a2105b3e6ae4a1bd8d41b9e304a1d7785b8b53384356e974a60503eda0f2c8b7
GET /app/website/static/fonts/Bookmania/b65b5f54-6ce0-4ecc-b056-7c00c1a6b386.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Mon, 16 Dec 2019 22:04:10 GMT
x-rgw-object-type: Normal
etag: "f40ddced00f9af44955f67a1e806f5c9"
x-amz-request-id: tx0000000000000043303cf-006328f733-c6aed46-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: 7a7b1c4b4ca5123596c855bc6af90f8cd625af44
x-request-id: 2a2038a62a4b7ac202f87f435dbef2ab
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 1862555
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.342066,VS0,VE2
access-control-allow-origin: *
content-length: 13064
X-Firefox-Spdy: h2
cdn3.editmysite.com/app/website/static/fonts/Work%20Sans/work-sans-v18-latin-regular.woff2
151.101.85.46200 OK 18 kB URL HTTP/2 cdn3.editmysite.com/app/website/static/fonts/Work%20Sans/work-sans-v18-latin-regular.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 17912, version 1.0\012- data
Hash 4116d9a86a2889032aaca45779a997ca
c99f3ea2bd016a259a1cb864aa31b38def9cb667
3c46b18a1ccba221be436881e1649ef1bfd1e656184fcd535e84bc77c77e8e5d
GET /app/website/static/fonts/Work%20Sans/work-sans-v18-latin-regular.woff2 HTTP/1.1
Host: cdn3.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Referer: https://cdn3.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Mon, 05 Sep 2022 14:54:59 GMT
x-rgw-object-type: Normal
etag: "4116d9a86a2889032aaca45779a997ca"
x-amz-request-id: tx00000000000000b46fa43-0063323af2-c696eea-sfo1
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-revision: db3c66ae53fd5b5133c39025e2b01b068f92ba96
x-request-id: a15c9a994a868faeb0a1574f0671f685
x-w-dc: SFO
accept-ranges: bytes
date: Wed, 12 Oct 2022 18:59:20 GMT
via: 1.1 varnish
age: 1364886
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665601160.344131,VS0,VE5
access-control-allow-origin: *
content-length: 17912
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1984
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Oct 2022 18:59:20 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=94357d59-90df-48e2-b959-5c0d6a9332c6; Expires=Thu, 12 Oct 2023 18:59:20 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.rebelcatalog.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
35.188.42.15200 OK 2 B URL HTTP/1.1 sentry.io/api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7
IP 35.188.42.15:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/1263158/envelope/?sentry_key=13e49d785d8d4f828038b6136f3b48ba&sentry_version=7 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rebelcatalog.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.rebelcatalog.com
Content-Length: 417
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://www.rebelcatalog.com
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
www.rebelcatalog.com/uploads/b/03e03e06142956cafb4070d5aabab5982892c4e5240adea3a6e40d8029a21740/JacksMotorcycles_Logo1web_1603466986.jpg?width=400
199.34.228.164200 OK 23 kB URL HTTP/1.1 www.rebelcatalog.com/uploads/b/03e03e06142956cafb4070d5aabab5982892c4e5240adea3a6e40d8029a21740/JacksMotorcycles_Logo1web_1603466986.jpg?width=400
IP 199.34.228.164:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6887e64a2a09b9a79737d39280caa24c
87f3dab23f5ab6169c48c912a4bb64f560e61900
afac12c3993d921f77f9e2c3bfc872b31b6b3a09597a1d6747be0f0691249cd0
Analyzer Verdict Alert fortinet Phishing
GET /uploads/b/03e03e06142956cafb4070d5aabab5982892c4e5240adea3a6e40d8029a21740/JacksMotorcycles_Logo1web_1603466986.jpg?width=400 HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/webp
Content-Length: 22892
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "ADF3MuEMKOPcUPXhm9PvBzTAC4yWN9JHYQCCdpgt1Dk"
Fastly-Io-Info: ifsz=1844260 idim=3600x3600 ifmt=jpeg ofsz=22892 odim=400x400 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx0000000000000035063b7-006285c86d-b9fbc63-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z66d4
X-Storage-Object: 66d460f14c6f1c158107cfd08a2beb75ba855d83b281503856bce9c1eb090ce8
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-sjc10073-SJC, cache-pao17440-PAO
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1665601160.214356,VS0,VE238
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu33.sf2p.intern.weebly.net
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 4124
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Referer: https://www.rebelcatalog.com/
Cookie: sp=94357d59-90df-48e2-b959-5c0d6a9332c6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Oct 2022 18:59:20 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=94357d59-90df-48e2-b959-5c0d6a9332c6; Expires=Thu, 12 Oct 2023 18:59:20 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.rebelcatalog.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.rebelcatalog.com/static/icons/payment-methods/applepay.svg
199.34.228.164200 OK 3.0 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/applepay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2381)
Hash c9f0fd2c3c94b10595455b840e220672
7734e007c6a4dd650d38be5b29c7335cf9cbfb97
a1aedf64c61a6c121aa0e78164ad0d32f1ebbfd949197c88c7f48462bcbed3ab
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/applepay.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 2986
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "c9f0fd2c3c94b10595455b840e220672"
x-amz-request-id: tx000000000000001aa71e4-00628473fa-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn137.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 7be9e15a48e7c8c6544532f4d51c80e4
www.rebelcatalog.com/static/icons/payment-methods/visa.svg
199.34.228.164200 OK 2.2 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/visa.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1610)
Hash 98e2d557ac9311fbf6c47dcb9cb2c730
e58712545669ba118a42f2e47fcaaabd095cdc6c
0647e086fe11b0748687b68e25c9d2830b8fa08c4397c6c7c6e327d5e8e6c43d
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/visa.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 2247
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 21:25:04 GMT
x-rgw-object-type: Normal
ETag: "98e2d557ac9311fbf6c47dcb9cb2c730"
x-amz-request-id: tx000000000000033d977b4-00631274b0-bfe27ea-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu99.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 55282d3b070f4cea425bf0b6efdbe799
www.rebelcatalog.com/static/icons/payment-methods/googlepay.svg
199.34.228.164200 OK 3.1 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/googlepay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1581)
Hash 2e6b26f9d61dd22468981356313ca58c
df83a373e46337f409c59947b4ae5f9abe1d896a
85d63842ff30824d4324316344c9eea12995869cc3f5f353fbfa2c3008980222
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/googlepay.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 3115
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2e6b26f9d61dd22468981356313ca58c"
x-amz-request-id: tx000000000000001a5c24d-00628473f6-b9fbc77-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn143.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: ea6c7aabe13229783a087f74c52e82a7
www.rebelcatalog.com/static/icons/payment-methods/mastercard.svg
199.34.228.164200 OK 1.7 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/mastercard.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (424)
Hash 1448577966d9c16095880130e876db7a
ecfaef0be795af04cab2f95d7457721a35cf1742
0b6808d0e93f753a1036f42b52c1a2616662d1503f8d07234a98ee54d7a3dd1e
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/mastercard.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 1657
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "1448577966d9c16095880130e876db7a"
x-amz-request-id: tx000000000000001ae6773-00628473fe-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn74.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 571e9c5ef1969701e0a7227331b16654
www.rebelcatalog.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
199.34.228.164200 OK 988 B URL HTTP/1.1 www.rebelcatalog.com/ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with very long lines (988), with no line terminators
Hash d8cd267ff8f8397766dcff229a3e321b
a2406c105ca074445a4432a1119bea565756f594
fbdc7a485166ec20c3b170dc9f04e200666aa4ea38d3456cf4f7a96ea22c233e
POST /ajax/api/JsonRPC/Commerce/?Commerce/[Checkout::getSquareStoreConfig] HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9
Content-Length: 78
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 18:59:20 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn84.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 988
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.rebelcatalog.com/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
199.34.228.164200 OK 201 B URL HTTP/1.1 www.rebelcatalog.com/ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments]
IP 199.34.228.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bbf985fd86ef8add09a38860a98def2f
2804fa968da1e1b8be4b6f150438e45f4150d3c0
236153652c6f09415db4ee8f8b9a98827da5987a001a136d94d87f401ef6f160
POST /ajax/api/JsonRPC/Commerce/?Commerce/[ABTestSegmentation::getTestSegments] HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-XSRF-TOKEN: eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9
Content-Length: 83
Origin: https://www.rebelcatalog.com
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 18:59:20 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn9.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 201
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.rebelcatalog.com/static/icons/payment-methods/americanexpress.svg
199.34.228.164200 OK 1.2 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/americanexpress.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (955)
Hash 2d510915ad1e47e7f6fa0a9ca6dfe7d2
a94981dcae88d70869bce16df350fbc0fbc0c138
52c75baa1c05af510c5017a200f40094bba37a6ccbb2fe5ce2542f331b812204
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/americanexpress.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 1206
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "2d510915ad1e47e7f6fa0a9ca6dfe7d2"
x-amz-request-id: tx000000000000001aa71ba-00628473fa-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn137.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: d2253f04587ee769d41bed75b32ae371
www.rebelcatalog.com/static/icons/payment-methods/discover.svg
199.34.228.164200 OK 3.1 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/discover.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2151)
Hash 9e274d45e1f0b4185bb742d876cee3f5
67405429005f54a1cfb1a27e27491d89814f9ede
a9e66fbb3fb33098304147be606afc2b8e8c8f745db8a83bb6b2d7a0a9a42abc
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/discover.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 3087
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "9e274d45e1f0b4185bb742d876cee3f5"
x-amz-request-id: tx000000000000001af99f3-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu99.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 8a6e5f4a51dd763d188b1f2a2bb6439b
www.rebelcatalog.com/static/icons/payment-methods/jcb.svg
199.34.228.164200 OK 3.9 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/jcb.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1131)
Hash 32a219b916e0f1667aa650f7f8536a7b
a464d7ae31f4996c69c95a11fb791b01e55ceba8
4e8f269a2bf9b6d132634125bfe865e6342103f4cbd7953951d16c3442a24216
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/jcb.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 3876
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:39 GMT
x-rgw-object-type: Normal
ETag: "32a219b916e0f1667aa650f7f8536a7b"
x-amz-request-id: tx000000000000001af9a36-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn143.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 6565e40446e1757b7548ebe332988a78
www.rebelcatalog.com/static/icons/payment-methods/cashapp.svg
199.34.228.164200 OK 1.4 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/cashapp.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1143)
Hash 4d9798d0983422b1931dbfb934e04144
b70cb2e3822c77177ba56a351e309d5394263105
880d2b790069e44a5ac9b19ea84372fb6289a1cddae239a7aea7d948fd9faa3a
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/cashapp.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:20 GMT
Content-Type: image/svg+xml
Content-Length: 1394
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "4d9798d0983422b1931dbfb934e04144"
x-amz-request-id: tx00000000000000d958643-00629614fd-b9fbc7f-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn74.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 0899cbcf9e216f301c1d5d85fa6c3cdf
www.rebelcatalog.com/static/icons/payment-methods/afterpay.svg
199.34.228.164200 OK 2.1 kB URL HTTP/1.1 www.rebelcatalog.com/static/icons/payment-methods/afterpay.svg
IP 199.34.228.164:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (665)
Hash 260a26946c3308e835f83022e177e1aa
3ef5afcc903a2375bc686511214c5e9e535b2342
cb0d2b4c057e2dd0c0be626a3fc89c2fbfe23a8de627f2031d1c44de406ffc35
Analyzer Verdict Alert fortinet Phishing
GET /static/icons/payment-methods/afterpay.svg HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:21 GMT
Content-Type: image/svg+xml
Content-Length: 2148
Connection: keep-alive
Last-Modified: Thu, 28 Apr 2022 18:10:38 GMT
x-rgw-object-type: Normal
ETag: "260a26946c3308e835f83022e177e1aa"
x-amz-request-id: tx000000000000001ae6769-00628473fd-b9fbc63-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn65.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: 429a00414b68dc22e3260df8309da074
www.rebelcatalog.com/uploads/b/681db2f0-1544-11eb-bd28-6571b0abce8e/icon_180x180_ios.png?width=180
199.34.228.164200 OK 2.1 kB URL HTTP/1.1 www.rebelcatalog.com/uploads/b/681db2f0-1544-11eb-bd28-6571b0abce8e/icon_180x180_ios.png?width=180
IP 199.34.228.164:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2ac20d7d899f852014e6fed0cd1bc09e
0b0b857e05f5aab3715087d004a3e4f405585f19
7adec40df0c5e3c3d67249bd5b5822519857a5a770dcb6c92fcc45080b92c69b
Analyzer Verdict Alert fortinet Phishing
GET /uploads/b/681db2f0-1544-11eb-bd28-6571b0abce8e/icon_180x180_ios.png?width=180 HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:21 GMT
Content-Type: image/webp
Content-Length: 2066
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
Etag: "3L4SaEuDMvi1i5IasbYdGu3C8r5TVh5FtsXOhO8b9dY"
Fastly-Io-Info: ifsz=3195 idim=180x180 ifmt=png ofsz=2066 odim=180x180 ofmt=webp
Fastly-Stats: io=1
X-Amz-Request-Id: tx00000000000001629c396-00634477ba-c669cc6-sfo1
X-Rgw-Object-Type: Normal
X-Storage-Bucket: z4838
X-Storage-Object: 483842bb1e1c5851dcb9dbdf214184134c72e4d58ae03687cf62cd70de3c9f25
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-sjc10020-SJC, cache-pao17425-PAO
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1665601161.198912,VS0,VE12
Vary: Accept
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: blu29.sf2p.intern.weebly.net
www.rebelcatalog.com/square.ico
199.34.228.164200 OK 6.5 kB URL HTTP/1.1 www.rebelcatalog.com/square.ico
IP 199.34.228.164:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d810985ef4dc1c0bd5811e36d13c8ca3
2b45bb77c68c937af6a2d9854dc82301526473aa
770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6
Analyzer Verdict Alert fortinet Phishing
GET /square.ico HTTP/1.1
Host: www.rebelcatalog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rebelcatalog.com/sm/includes/diag/b2020123/1/run/emailerror.php
Cookie: publishedsite-xsrf=eyJpdiI6InRkVVAySWxYeEIycXExNUFNRTJFcWc9PSIsInZhbHVlIjoibjdMZ1wvdVNhTlJKRFZ4MEU4YUlzWVJMSm1uQmUxV2llTk8rXC9Pa0d4eW5BNFJxV1ZpM0hpOXV1WG1ibXQ2WVVvYUs5N2JFN2hwVzAydjg2VkQ4Q3VaNnF2eEkwM01VQ1NmY0JhWnVFMjlRdEF3clVBZ3B4XC9IOENjaTBublJRTSsiLCJtYWMiOiIxYjE2OWI3ZjBkZjA3OWU5NTc5MTAzOTQwZmVlYjFhNDc4ZjkzMjMxMGIxNmUyZDk0NDhlYzVhZDIwZDQ0NTNhIn0%3D; XSRF-TOKEN=eyJpdiI6ImZSRkJWeHlab0NJdEowUnQxdGZmSkE9PSIsInZhbHVlIjoieWUyMFltYm1kUUVmcW9hRDdxTmg3UXlMTU1CaGFuaDc2RGhqaHlnbDcya2JGT1hKcXY2NjRLWEdnYnBnd3owaFFXbXRqaWIxZkowVFlHcCtvdU1jOFhXZHJqXC9lcFRvUGNtRlYzWWtxUzFYRDlqTndjNTR4VXFHeVhPR2Nma25EIiwibWFjIjoiMmNkNjM5NzY1MWM4NjUxMDcxMTFiODQ0YWFiMDIzZjhjYTA1OTE5MWExNTg1YmJkMjE5YTdjYzI3NzllOTg2OSJ9; PublishedSiteSession=eyJpdiI6IldqaWc1Qmd2ZkVHY1Z0RFpwdkdoVFE9PSIsInZhbHVlIjoiam8wYzdnMlltbFVSbGpPNWo5MW9jOXJ1YlVVZGxyQldWcTV1b3hWcGRITitiWUNiTExmbVM2V3RvNVJTR1NiSnR1N1JFYmlPWGhRMFpFU0hHcEdyYWZRaTd4RmcyWWxFaFRnQWxVVTJ1R2V1YmxTNDRYM25BNmh0ZkJnbW1PWjciLCJtYWMiOiI4YzVmMTNhMDU3ZmYzZWEzYThhYWFlMGU5ZDE1ZmEzY2U3MzRmY2EzZGQwZWM4OTkwMjQ3MDFhMGY1NzIxNDI3In0%3D; _snow_ses.7952=*; _snow_id.7952=b44fb925-8a26-48cb-a11f-cdf6375bb2d4.1665601160.1.1665601160.1665601160.7a231ac0-2feb-4882-82c8-de69ca24f922
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 18:59:21 GMT
Content-Type: image/x-icon
Content-Length: 6518
Connection: keep-alive
Last-Modified: Tue, 02 Apr 2019 14:51:59 GMT
x-rgw-object-type: Normal
ETag: "d810985ef4dc1c0bd5811e36d13c8ca3"
x-amz-request-id: tx000000000000001af9993-00628473f6-b9fbc29-sfo1
Accept-Ranges: bytes
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Host: grn143.sf2p.intern.weebly.net
X-Revision: 099b3f3b7100d1e8f78754d1349713ac6ee32471
X-Request-ID: a392d8267ab0f2819889e3efded01828
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e885fe35564ed7fefe0fb0fda2b9ebe7
bf37aa53466c3764d205de17070753b3204d78e4
187a99359986ae3131d303c09baf25ffa0dcf1ca80e09c9bee56434bff6f07d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b429ef-0b4d-4ac1-a57e-0512cbe70108.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13724
x-amzn-requestid: 3f358e0a-786b-48fc-9e45-bda97026e544
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3Ak_FbjoAMFfQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e152-134d2c6f4efafecb71df10e6;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:34:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C2z9SP8_BZ-lf9NPNR-24Tjtc98JRz54D4Lmeie9QmTKNIDCR9knNg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:48:15 GMT
age: 76271
etag: "bf37aa53466c3764d205de17070753b3204d78e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2