Report - termsofupdate.wixsite.com/att-mail

Report Overview

Visited public
2025-04-10 11:04:58
Tags
URL
termsofupdate.wixsite.com/att-mail
Finishing URL
termsofupdate.wixsite.com/att-mail
IP / ASN
34.144.206.118
#396982 GOOGLE-CLOUD-PLATFORM
Title
404 Error: Page Not Found | Wix.com

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.wixstatic.com	5648	2013-04-10	2013-06-07	2025-04-03	482 B	26 kB	143.204.55.40
frog.wix.com	5452	1995-05-12	2016-04-07	2025-04-03	1.7 kB	1.2 kB	52.72.77.220
static.parastorage.com	5943	2010-05-03	2012-08-03	2025-04-09	7.6 kB	687 kB	34.49.229.81
termsofupdate.wixsite.com	unknown	2012-05-08	2025-04-10	2025-04-10	1.9 kB	10 kB	34.144.206.118
www.wix.com	18092	1995-05-12	2012-12-26	2025-04-04	2.3 kB	17 kB	34.149.87.45

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2025-04-09	medium	termsofupdate.wixsite.com/att-mail	AT&T Inc.
2025-04-09	medium	termsofupdate.wixsite.com/att-mail	AT&T Inc.
2025-04-09	medium	termsofupdate.wixsite.com/att-mail	AT&T Inc.

PhishTank

Scan Date	Severity	Indicator	Alert
2025-04-09	medium	termsofupdate.wixsite.com/att-mail	Other
2025-04-09	medium	termsofupdate.wixsite.com/att-mail	Other
2025-04-09	medium	termsofupdate.wixsite.com/att-mail	Other

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-10	medium	termsofupdate.wixsite.com	Sinkholed
2025-04-10	medium	termsofupdate.wixsite.com	Sinkholed
2025-04-10	medium	termsofupdate.wixsite.com	Sinkholed
2025-04-10	medium	termsofupdate.wixsite.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	static.parastorage.com/unpkg-semver/fedops-logger@5/fedops-logger.bundle.min.js	ScriptElement	78 kB	2023-09-11	2025-05-20
Pretty URL static.parastorage.com/unpkg-semver/fedops-logger@5/fedops-logger.bundle.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-11 21:52 Last Seen2025-05-20 22:01 Times Seen2413 Hash b774cd829b7efa4409d97aeea6fc1d93 43542d7135965c5d68c04a27017ed5755e36e59e 9abcf89d802369380fdd7bd8bfbfcb7db3984e0b052e94ba2f8c9301f2892509 Loading...

	termsofupdate.wixsite.com/att-mail	ScriptElement	546 B	2025-02-05	2025-05-15
Pretty URL termsofupdate.wixsite.com/att-mail IP 34.144.206.118 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-05 16:42 Last Seen2025-05-15 13:01 Times Seen238 Hash 312ca68c2fa638011eda117fb42926fc eeac2cc3cb52580c78443e5ed7d254768c85c674 ea8a33c9223760d9ab0260dc97825b9ae31a9b990382aff7aa45ffe897651862 Loading...

	static.parastorage.com/services/classic-error-pages-statics/0e0a5b34eeb2a3ee4d7aeae1bc11139dcea675c688b2af2c85123dfe/852.chunk.min.js	ScriptElement	3.6 kB	2025-03-13	2025-05-15
Pretty URL static.parastorage.com/services/classic-error-pages-statics/0e0a5b34eeb2a3ee4d7aeae1bc11139dcea675c688b2af2c85123dfe/852.chunk.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-13 19:29 Last Seen2025-05-15 13:01 Times Seen248 Hash f64b9913935e5b42f155be61571094db e575c89d027cd25521b33b7f586bebab153fcca1 68aa1f555a1b7f222df5c7fe2d6675970cb5540c2825d7ac33be84dc6cde1d38 Loading...

	static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.bundle.min.js	ScriptElement	182 kB	2025-04-09	2025-04-10
Pretty URL static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.bundle.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 10:34 Last Seen2025-04-10 12:54 Times Seen52 Hash 30cdbace0294f78a0b9e0a26af2a22c5 0d855fb505fe76da4e4889d98c9d351c8a299098 4005f759548052c5a41bf60d6cb41dfd9003e0951631de16f0889d76061af042 Loading...

	static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/assets/locale/messages_en.chunk.min.js	ScriptElement	6.5 kB	2025-04-09	2025-04-10
Pretty URL static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/assets/locale/messages_en.chunk.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 10:34 Last Seen2025-04-10 12:54 Times Seen52 Hash 276bc332c27b63f688f1da05d2b69a3a 77e56f529297d4cef0a275d2e95647852cf975ac 824ab366d893224361ed615abb9b9406d8ec06e434c2b1f923dc7d066d0e30e2 Loading...

	static.parastorage.com/unpkg/react-dom@18.2.0/umd/react-dom.production.min.js	ScriptElement	132 kB	2023-03-07	2025-05-21
Pretty URL static.parastorage.com/unpkg/react-dom@18.2.0/umd/react-dom.production.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38 Last Seen2025-05-21 02:21 Times Seen3511 Hash 64141792105ea4861f9f33294d65ab81 506d9100caa070005a890bd496de64c437d6d008 21758ed084cd0e37e735722ee4f3957ea960628a29dfa6c3ce1a1d47a2d6e4f7 Loading...

	static.parastorage.com/unpkg-semver/header-footer-provider/app.bundle.min.js	ScriptElement	36 kB	2025-02-05	2025-05-15
Pretty URL static.parastorage.com/unpkg-semver/header-footer-provider/app.bundle.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-05 16:42 Last Seen2025-05-15 13:01 Times Seen260 Hash f43c3fcac7e4c00951f7edefc5a3cb6a 480392bbccc2621d908d636708efa6f735ef068d 63f305a01ebc61814279ca7eaeefdabc4c41dc71e5ccab1a330dcfc3b399160f Loading...

	termsofupdate.wixsite.com/att-mail	ScriptElement	65 B	2025-03-02	2025-05-15
Pretty URL termsofupdate.wixsite.com/att-mail IP 34.144.206.118 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-02 18:19 Last Seen2025-05-15 13:01 Times Seen250 Hash f3c5bfaa910d3b7c66de3a8320321c6a 040d38b490d33d8f89bded0f056f500df379ff65 139287db66c6fba643ef447cc8ac4df275cd6cc97427b927cc8becdfd204cf5e Loading...

	static.parastorage.com/unpkg/react@18.2.0/umd/react.production.min.js	ScriptElement	11 kB	2023-03-07	2025-05-21
Pretty URL static.parastorage.com/unpkg/react@18.2.0/umd/react.production.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38 Last Seen2025-05-21 02:21 Times Seen3529 Hash d86dcdbfed4c273c4742744941259902 98089a33d0cf2fa4b3e1ba9b7eeb9b8ba0ac82a7 4b4969fa4ef3594324da2c6d78ce8766fbbc2fd121fff395aedf997db0a99a06 Loading...

	static.parastorage.com/services/classic-error-pages-statics/1.76.0/app.bundle.min.js	ScriptElement	111 kB	2025-03-31	2025-05-15
Pretty URL static.parastorage.com/services/classic-error-pages-statics/1.76.0/app.bundle.min.js IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-31 13:36 Last Seen2025-05-15 13:01 Times Seen240 Hash ff89f8ff759ceab97129b89e5af656b1 fe9a60de83c361e14f5568003d1b30ab3282e465 fbee42c36f36f53f7dcf1a1f82cc0bde3b39fd24c2d8317a64bd6c26e0989efb Loading...

	termsofupdate.wixsite.com/att-mail	ScriptElement	369 B	2025-04-10	2025-04-10
Pretty URL termsofupdate.wixsite.com/att-mail IP 34.144.206.118 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 11:04 Last Seen2025-04-10 11:04 Times Seen1 Hash 7667ff8f9be26d039601f43be79e52d3 55e7ec1867b123532354ebf9583a8f62d1f1b035 b9046e03d150f100a7f84ac1aa3a987fd424097417ea0c50ecf2fb1b0bb0fa9d Loading...

	static.parastorage.com/polyfill/v2/polyfill.min.js?features=default,es6,es7,es2017&flags=gated&unknown=polyfill&rum=0	ScriptElement	556 B	2023-12-20	2025-05-15
Pretty URL static.parastorage.com/polyfill/v2/polyfill.min.js?features=default,es6,es7,es2017&flags=gated&unknown=polyfill&rum=0 IP 34.49.229.81 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 04:48 Last Seen2025-05-15 13:01 Times Seen357 Hash 4861da74f6e71976047eeef51607ab8b 60660942dac7628f6cc44ed047780f43481349f7 9c2639bf8824c2b34a3355988e4300d2e52a8983deb6f54953aa56f46fca30c9 Loading...

HTTP Transactions (25)

URL IP Response Size

frog.wix.com/fed

52.72.77.220

204 No Content

0 B

URL POST
frog.wix.com/fed
IP
52.72.77.220:443
ASN
#14618 AMAZON-AES

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.frog.wix.com
Fingerprint18:30:84:99:42:B9:C1:09:FC:C4:77:7E:F8:DD:66:09:D6:D8:67:83
ValidityFri, 28 Mar 2025 11:02:32 GMT - Thu, 26 Jun 2025 11:02:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /fed HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 354
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Thu, 10 Apr 2025 11:04:38 GMT
server: nginx
access-control-allow-origin: https://termsofupdate.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

static.parastorage.com/unpkg/react@18.2.0/umd/react.production.min.js

34.49.229.81

200 OK

11 kB

URL GET
static.parastorage.com/unpkg/react@18.2.0/umd/react.production.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (630)
Size
11 kB (10737 bytes)
Hash
d86dcdbfed4c273c4742744941259902
98089a33d0cf2fa4b3e1ba9b7eeb9b8ba0ac82a7
4b4969fa4ef3594324da2c6d78ce8766fbbc2fd121fff395aedf997db0a99a06

HTTP Headers

GET /unpkg/react@18.2.0/umd/react.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-server-side-encryption: AES256
server: Pepyaka/1.21.6
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 446879179 693384523, 380911544
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 4111
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAbc6ZO93n0xtcNLcucTm2i
x-cluster-node-role: proxy
accept-ranges: bytes
date: Sun, 06 Apr 2025 21:42:58 GMT
cache-control: public, max-age=7776000, immutable
age: 307299
last-modified: Sat, 18 May 2024 05:33:23 GMT
etag: W/"d86dcdbfed4c273c4742744941259902"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/services/classic-error-pages-statics/1.76.0/app.min.css

34.49.229.81

200 OK

3.2 kB

URL GET
static.parastorage.com/services/classic-error-pages-statics/1.76.0/app.min.css
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
ASCII text, with very long lines (3197), with no line terminators
Size
3.2 kB (3197 bytes)
Hash
2c0c1cc046673d08b37f098823efb19a
8400f30c30a3012a87abd31e3e63a5df1480e026
1721f843d82f8f618c93b4d5df86747278a5651d7cadf086e49e5321983902b1

HTTP Headers

GET /services/classic-error-pages-statics/1.76.0/app.min.css HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: _kLr.iZ9_3Vr_cjiYJmHsLEhKeKLSiXC
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 561692629 821443449, 530340257
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 968
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAH9ULx/YjubwoH40SQ7GPK
x-cluster-node-role: proxy
accept-ranges: bytes
date: Wed, 02 Apr 2025 16:36:22 GMT
cache-control: public, max-age=7776000, immutable
age: 671295
last-modified: Thu, 27 Mar 2025 13:59:57 GMT
etag: W/"2c0c1cc046673d08b37f098823efb19a"
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/media/WixMadeforTextVF_W_Wght.8022447a.woff2

34.49.229.81

200 OK

40 kB

URL GET
static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/media/WixMadeforTextVF_W_Wght.8022447a.woff2
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40188, version 3.0
Size
40 kB (40188 bytes)
Hash
8022447a898f183d125334f6e4a13e86
2b5f13d51b5256ca5781ac1ff569799a67d72cdc
83ea0d46fbd594420a315e27c37eea919af248077b529bbc4df7ad0eeb4e43f2

HTTP Headers

GET /unpkg/@wix/wix-fonts@1.14.0/media/WixMadeforTextVF_W_Wght.8022447a.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://termsofupdate.wixsite.com/
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 40188
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
server: Pepyaka/1.21.6
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 742249862 560006659, 723550671 717995061
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQDv2/wIUmrsg/MW/N5YNXgQ
x-cluster-node-role: serve
accept-ranges: bytes
date: Tue, 08 Apr 2025 16:35:01 GMT
cache-control: public, max-age=7776000, immutable
age: 152976
last-modified: Tue, 21 Dec 2021 10:42:27 GMT
etag: "8022447a898f183d125334f6e4a13e86"
content-type: font/woff2
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/media/WixMadeforDisplayVF_W_Wght.ab35e4df.woff2

34.49.229.81

200 OK

39 kB

URL GET
static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/media/WixMadeforDisplayVF_W_Wght.ab35e4df.woff2
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38900, version 3.0
Size
39 kB (38900 bytes)
Hash
ab35e4df84512cc3d1b92bfe92f78a82
b5fba42647217853f23120a71355993239fc3c56
36b8ceceb9cb75b1092fe21b39e4c453b45e685bbf057af825ca2d4f890a7576

HTTP Headers

GET /unpkg/@wix/wix-fonts@1.14.0/media/WixMadeforDisplayVF_W_Wght.ab35e4df.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://termsofupdate.wixsite.com/
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 38900
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-server-side-encryption: AES256
server: Pepyaka/1.21.6
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-varnish: 800360911 647398123, 765025740
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAH9ULx/YjubwoH40SQ7GPK
x-cluster-node-role: proxy
accept-ranges: bytes
date: Sun, 06 Apr 2025 16:57:33 GMT
cache-control: public, max-age=7776000, immutable
age: 324424
last-modified: Tue, 09 Jul 2024 13:16:25 GMT
etag: "ab35e4df84512cc3d1b92bfe92f78a82"
content-type: font/woff2
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

termsofupdate.wixsite.com/att-mail

34.144.206.118

301 Moved Permanently

2.5 kB

URL User Request GET
termsofupdate.wixsite.com/att-mail
IP
34.144.206.118:80
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
2.5 kB (2508 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /att-mail HTTP/1.1
Host: termsofupdate.wixsite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Location: https://termsofupdate.wixsite.com:443/att-mail
Content-Length: 0
Date: Thu, 10 Apr 2025 11:04:36 GMT
Content-Type: text/html; charset=UTF-8

static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/madeforDisplay.min.css

34.49.229.81

200 OK

1.3 kB

URL GET
static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/madeforDisplay.min.css
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
Unicode text, UTF-8 text, with very long lines (1311), with no line terminators
Size
1.3 kB (1331 bytes)
Hash
8825c8db380eff2e8d0c67224d374cf9
943ffdf36888d0cb79fdfeb4611836e860e1d1e6
5d869401f5083d0494855a71d129af77005c691cff1eae76e4c57d64c9645faa

HTTP Headers

GET /unpkg/@wix/wix-fonts@1.14.0/madeforDisplay.min.css HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-server-side-encryption: AES256
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 86134777 556307100, 382451496
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 437
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVcydaHuKmePuYLvGovietlnfutRwy0ArBOYYbKBdNgWnM
x-cluster-node-role: proxy
accept-ranges: bytes
date: Mon, 31 Mar 2025 23:38:35 GMT
cache-control: public, max-age=7776000, immutable
age: 818762
last-modified: Mon, 19 Aug 2024 07:54:43 GMT
etag: W/"8825c8db380eff2e8d0c67224d374cf9"
content-type: text/css
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/services/classic-error-pages-statics/0e0a5b34eeb2a3ee4d7aeae1bc11139dcea675c688b2af2c85123dfe/852.chunk.min.js

34.49.229.81

200 OK

3.6 kB

URL GET
static.parastorage.com/services/classic-error-pages-statics/0e0a5b34eeb2a3ee4d7aeae1bc11139dcea675c688b2af2c85123dfe/852.chunk.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (3572), with no line terminators
Size
3.6 kB (3572 bytes)
Hash
f64b9913935e5b42f155be61571094db
e575c89d027cd25521b33b7f586bebab153fcca1
68aa1f555a1b7f222df5c7fe2d6675970cb5540c2825d7ac33be84dc6cde1d38

HTTP Headers

GET /services/classic-error-pages-statics/0e0a5b34eeb2a3ee4d7aeae1bc11139dcea675c688b2af2c85123dfe/852.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: yAIolzJCOAgRmNSBKPO3hLkEOfsMe7OK
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 43853299 519483133, 119181180
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 738
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAH9ULx/YjubwoH40SQ7GPK
x-cluster-node-role: proxy
accept-ranges: bytes
date: Tue, 08 Apr 2025 19:42:23 GMT
cache-control: public, max-age=7776000, immutable
age: 141735
last-modified: Thu, 27 Mar 2025 13:37:37 GMT
etag: W/"f64b9913935e5b42f155be61571094db"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

termsofupdate.wixsite.com/att-mail

34.144.206.118

404 Not Found

2.5 kB

URL User Request GET
termsofupdate.wixsite.com/att-mail
IP
34.144.206.118:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerLet's Encrypt
Subject*.wix.com
Fingerprint7B:0F:DD:BA:9F:1B:D4:AC:ED:34:CF:C4:61:33:1F:EF:81:02:3D:23
ValidityTue, 25 Mar 2025 11:57:00 GMT - Mon, 23 Jun 2025 11:56:59 GMT

File type
HTML document, ASCII text
Size
2.5 kB (2508 bytes)
Hash
ba6e4214c46de247ea1955f0fc395b0e
441ffa68ddd09a017ad19879b65565ffc558d6e3
3663e2d2af58b6bc085446c5983f513714190b4000ed950cb1da631572aed6d9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /att-mail HTTP/1.1
Host: termsofupdate.wixsite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 10 Apr 2025 11:04:37 GMT
content-type: text/html; charset=utf-8
x-wix-cache-control: public, max-age=30
age: 0
x-seen-by: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLvWP/qZYRLp4MD8R6NO8PGLJftmKrOReD3ukbbas4YDo,2d58ifebGbosy5xc+FRalmDvIK2mPGUT5RoOJccJIFuvv8WXwNy6AR10qbZZo616xjKo4UxPw0Srz3xIuD6lMA==,2UNV7KOq4oGjA5+PKsX47Nu8+b2FrLqyPcFweIzdCTK8ZDY613cHYLbuhNMgAom1
vary: Accept-Encoding
x-wix-request-id: 1744283077.040855606725141773650
server-timing: cache;desc=hit, varnish;desc=hit, dc;desc=84_g
server: Pepyaka
x-content-type-options: nosniff
content-encoding: br
via: 1.1 google
glb-x-seen-by: zj+a2E71qOCweet+2KoAwKsDXK9Yj1hJlUA0MXxzy6E=
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.parastorage.com/services/classic-error-pages-statics/1.76.0/app.bundle.min.js

34.49.229.81

200 OK

111 kB

URL GET
static.parastorage.com/services/classic-error-pages-statics/1.76.0/app.bundle.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (39318)
Size
111 kB (110851 bytes)
Hash
ff89f8ff759ceab97129b89e5af656b1
fe9a60de83c361e14f5568003d1b30ab3282e465
fbee42c36f36f53f7dcf1a1f82cc0bde3b39fd24c2d8317a64bd6c26e0989efb

HTTP Headers

GET /services/classic-error-pages-statics/1.76.0/app.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: q.3Ka5KOqqYPxhGK4iz75dKWlEseH40j
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-cluster-self-is-next: true
x-varnish: 670787271 622560303
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQDv2/wIUmrsg/MW/N5YNXgQ
x-cluster-node-role: serve
accept-ranges: bytes
content-length: 29918
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Sun, 06 Apr 2025 17:56:28 GMT
cache-control: public, max-age=7776000, immutable
age: 320889
last-modified: Thu, 27 Mar 2025 13:59:57 GMT
etag: W/"ff89f8ff759ceab97129b89e5af656b1"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

termsofupdate.wixsite.com/_api/wix-laboratory-server/laboratory/conductExperiment?key=specs.funnel.getStartedCTAHeaderBlack&fallback=false

34.144.206.118

200 OK

5 B

URL GET
termsofupdate.wixsite.com/_api/wix-laboratory-server/laboratory/conductExperiment?key=specs.funnel.getStartedCTAHeaderBlack&fallback=false
IP
34.144.206.118:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.wix.com
Fingerprint7B:0F:DD:BA:9F:1B:D4:AC:ED:34:CF:C4:61:33:1F:EF:81:02:3D:23
ValidityTue, 25 Mar 2025 11:57:00 GMT - Mon, 23 Jun 2025 11:56:59 GMT

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
68934a3e9455fa72420237eb05902327
7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_api/wix-laboratory-server/laboratory/conductExperiment?key=specs.funnel.getStartedCTAHeaderBlack&fallback=false HTTP/1.1
Host: termsofupdate.wixsite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/att-mail
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 10 Apr 2025 11:04:38 GMT
content-type: text/plain;charset=utf-8
content-length: 5
cache-control: no-cache
x-seen-by: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLuibZi/iBWUtL5du4fKyNvfJftmKrOReD3ukbbas4YDo,jdDt270t0fniy2BugWKBrW56IYLFPj6MaaY2rfOopz7xFCsmjF+PZ1EyvuxBSehOQp44rJDhvJXwZ+Dd9+qyYQ==,IhVcft77rTa1g3YX9DdfDOflBqFVVsgifxAC14aRxcg=,mvxQ9qSAmY38asKjFCcmG3PIVRJ2DXA8dd+BH2t/d982759NP/AnOAw1GZ1ZC0kW5ejZtOYT9+PrN0bkt75w7g==
x-wix-request-id: 1744283078.64885534188245655962
set-cookie: XSRF-TOKEN=1744283078|hGsfIPDlF__9; Path=/; Domain=termsofupdate.wixsite.com; Secure; SameSite=None
server: Pepyaka
x-content-type-options: nosniff
via: 1.1 google
glb-x-seen-by: zj+a2E71qOCweet+2KoAwKsDXK9Yj1hJlUA0MXxzy6E=
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.wix.com/_api/header-footer-service/content?footer=false&languagePickerList=en&languagePickerList=cs&languagePickerList=da&languagePickerList=de&languagePickerList=es&languagePickerList=fr&languagePickerList=id&languagePickerList=it&languagePickerList=ja&languagePickerList=ko&languagePickerList=nl&languagePickerList=no&languagePickerList=pl&languagePickerList=pt&languagePickerList=ru&languagePickerList=sv&languagePickerList=th&languagePickerList=tr&languagePickerList=uk&languagePickerList=vi&languagePickerList=zh&header=true&language=en&hiddenLinks=language_picker&hiddenLinks=log_in&disableAuthCheck=true&brand=wix

34.149.87.45

204 No Content

0 B

URL OPTIONS
www.wix.com/_api/header-footer-service/content?footer=false&languagePickerList=en&languagePickerList=cs&languagePickerList=da&languagePickerList=de&languagePickerList=es&languagePickerList=fr&languagePickerList=id&languagePickerList=it&languagePickerList=ja&languagePickerList=ko&languagePickerList=nl&languagePickerList=no&languagePickerList=pl&languagePickerList=pt&languagePickerList=ru&languagePickerList=sv&languagePickerList=th&languagePickerList=tr&languagePickerList=uk&languagePickerList=vi&languagePickerList=zh&header=true&language=en&hiddenLinks=language_picker&hiddenLinks=log_in&disableAuthCheck=true&brand=wix
IP
34.149.87.45:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.wix.com
Fingerprint7B:0F:DD:BA:9F:1B:D4:AC:ED:34:CF:C4:61:33:1F:EF:81:02:3D:23
ValidityTue, 25 Mar 2025 11:57:00 GMT - Mon, 23 Jun 2025 11:56:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /_api/header-footer-service/content?footer=false&languagePickerList=en&languagePickerList=cs&languagePickerList=da&languagePickerList=de&languagePickerList=es&languagePickerList=fr&languagePickerList=id&languagePickerList=it&languagePickerList=ja&languagePickerList=ko&languagePickerList=nl&languagePickerList=no&languagePickerList=pl&languagePickerList=pt&languagePickerList=ru&languagePickerList=sv&languagePickerList=th&languagePickerList=tr&languagePickerList=uk&languagePickerList=vi&languagePickerList=zh&header=true&language=en&hiddenLinks=language_picker&hiddenLinks=log_in&disableAuthCheck=true&brand=wix HTTP/1.1
Host: www.wix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-wix-client-artifact-id
Referer: https://termsofupdate.wixsite.com/
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
set-cookie: XSRF-TOKEN=1744283078|w_uBw78TAAaT; Domain=.wix.com; Path=/; Secure; SameSite=Lax
access-control-allow-origin: https://termsofupdate.wixsite.com
access-control-allow-methods: GET
access-control-allow-headers: x-wix-client-artifact-id
pragma: no-cache
cache-control: no-store, no-cache
x-wix-request-id: 1744283077.956855724192102406381
strict-transport-security: max-age=31536000
server: Pepyaka
x-content-type-options: nosniff
accept-ranges: bytes
date: Thu, 10 Apr 2025 11:04:38 GMT
x-served-by: cache-bma1675-BMA
x-cache: MISS
vary: Origin, Access-Control-Request-Headers, Accept-Encoding
x-seen-by: yvSunuo/8ld62ehjr5B7kA==,jdDt270t0fniy2BugWKBreqGsYwgqgqjaG9WRQ3DdabxFCsmjF+PZ1EyvuxBSehOQp44rJDhvJXwZ+Dd9+qyYQ==,/ZMDgzxLdWW53LYzgFcrYWYQtQEir+A5u98oclW12wc=,24M/Ti7lHAciD8il5zq77cnq5fv1QoqwZigxsYH/TKNjCqXgpZhR9buzbakkoltHFeO9KpJjYZ5qHh3wlob4jA==
via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.149.87.45

200 OK

14 kB

URL GET
www.wix.com/_api/header-footer-service/content?footer=false&languagePickerList=en&languagePickerList=cs&languagePickerList=da&languagePickerList=de&languagePickerList=es&languagePickerList=fr&languagePickerList=id&languagePickerList=it&languagePickerList=ja&languagePickerList=ko&languagePickerList=nl&languagePickerList=no&languagePickerList=pl&languagePickerList=pt&languagePickerList=ru&languagePickerList=sv&languagePickerList=th&languagePickerList=tr&languagePickerList=uk&languagePickerList=vi&languagePickerList=zh&header=true&language=en&hiddenLinks=language_picker&hiddenLinks=log_in&disableAuthCheck=true&brand=wix
IP
34.149.87.45:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.wix.com
Fingerprint7B:0F:DD:BA:9F:1B:D4:AC:ED:34:CF:C4:61:33:1F:EF:81:02:3D:23
ValidityTue, 25 Mar 2025 11:57:00 GMT - Mon, 23 Jun 2025 11:56:59 GMT

File type
JSON text data
Size
14 kB (14510 bytes)
Hash
493ec63660561f646d1aba539ff37360
bc1374773e741008189d23b787b31db1bdd1521d
ad402674421a46f24255caf50b135b289ef757af9883e195b179d45810b7ed69

HTTP Headers

GET /_api/header-footer-service/content?footer=false&languagePickerList=en&languagePickerList=cs&languagePickerList=da&languagePickerList=de&languagePickerList=es&languagePickerList=fr&languagePickerList=id&languagePickerList=it&languagePickerList=ja&languagePickerList=ko&languagePickerList=nl&languagePickerList=no&languagePickerList=pl&languagePickerList=pt&languagePickerList=ru&languagePickerList=sv&languagePickerList=th&languagePickerList=tr&languagePickerList=uk&languagePickerList=vi&languagePickerList=zh&header=true&language=en&hiddenLinks=language_picker&hiddenLinks=log_in&disableAuthCheck=true&brand=wix HTTP/1.1
Host: www.wix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Wix-Client-Artifact-Id: header-footer-provider
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
set-cookie: XSRF-TOKEN=1744283078|QqKG1H2Gy57Z; Domain=.wix.com; Path=/; Secure; SameSite=Lax
access-control-allow-origin: https://termsofupdate.wixsite.com
etag: W/"38ae-vBN0dz50EAgYnSO3h7Mdsb3RUh0"
pragma: no-cache
cache-control: no-store, no-cache
x-wix-request-id: 1744283078.10385634630812647667
strict-transport-security: max-age=31536000
server: Pepyaka
x-content-type-options: nosniff
content-encoding: br
accept-ranges: bytes
date: Thu, 10 Apr 2025 11:04:38 GMT
x-served-by: cache-bma1630-BMA
x-cache: MISS
vary: Origin, Accept-Encoding
x-seen-by: yvSunuo/8ld62ehjr5B7kA==,7U7NzZSqfMgd9YnjHLtUa7xkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLqRuPvfvC6RzOgH6bZ0UWxmir2CltyNNADaTH/kLxhLB,jdDt270t0fniy2BugWKBrV1w6MD/2UOWz8TabQDqdgQN4GIMmyUvIdESpNRFdY83fHLglh0ZkBwXLFnWJmXMlQ==,A0mzEnPcyAyqREBxkpRzvkVQ0KSj52JV8If03h0x1SE=,24M/Ti7lHAciD8il5zq77cnq5fv1QoqwZigxsYH/TKNjCqXgpZhR9buzbakkoltHFeO9KpJjYZ5qHh3wlob4jA==
via: 1.1 google
glb-x-seen-by: bS8wRlGzu0Hc+WrYuHB8QIg44yfcdCMJRkBoQ1h6Vjc=
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.bundle.min.js

34.49.229.81

200 OK

182 kB

URL GET
static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.bundle.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (42164)
Size
182 kB (181732 bytes)
Hash
30cdbace0294f78a0b9e0a26af2a22c5
0d855fb505fe76da4e4889d98c9d351c8a299098
4005f759548052c5a41bf60d6cb41dfd9003e0951631de16f0889d76061af042

HTTP Headers

GET /services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: tRksWZ0igrXUx8o7ZJM_OtilbgaPxQ8p
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-cluster-self-is-next: true
x-varnish: 63757738 68230104
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAbc6ZO93n0xtcNLcucTm2i
x-cluster-node-role: serve
accept-ranges: bytes
content-length: 47220
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 10 Apr 2025 08:13:44 GMT
cache-control: public, max-age=7776000, immutable
age: 10254
last-modified: Wed, 09 Apr 2025 18:33:17 GMT
etag: W/"30cdbace0294f78a0b9e0a26af2a22c5"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.parastorage.com/polyfill/v2/polyfill.min.js?features=default,es6,es7,es2017&flags=gated&unknown=polyfill&rum=0

34.49.229.81

200 OK

556 B

URL GET
static.parastorage.com/polyfill/v2/polyfill.min.js?features=default,es6,es7,es2017&flags=gated&unknown=polyfill&rum=0
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (453)
Size
556 B (556 bytes)
Hash
4861da74f6e71976047eeef51607ab8b
60660942dac7628f6cc44ed047780f43481349f7
9c2639bf8824c2b34a3355988e4300d2e52a8983deb6f54953aa56f46fca30c9

HTTP Headers

GET /polyfill/v2/polyfill.min.js?features=default,es6,es7,es2017&flags=gated&unknown=polyfill&rum=0 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Apr 2025 11:04:37 GMT
content-type: text/javascript; charset=UTF-8
access-control-allow-methods: GET,HEAD,OPTIONS,GET, OPTIONS, POST
x-served-by: cache-dub4365-DUB
content-encoding: gzip
accept-ranges: none
server: Pepyaka/1.21.6
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZh/UsIXy25E2og5JiYX0UsYEP4UqLBMlNhUVERnacose
x-wix-request-id: 1744283077.409101630837041176646
vary: User-Agent
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
cache-control: public, max-age=7776000
access-control-allow-origin: *
surrogate-key: /polyfill /polyfill/v2
via: 1.1 google
x-cache: miss
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/unpkg/react-dom@18.2.0/umd/react-dom.production.min.js

34.49.229.81

200 OK

132 kB

URL GET
static.parastorage.com/unpkg/react-dom@18.2.0/umd/react-dom.production.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (945)
Size
132 kB (131882 bytes)
Hash
64141792105ea4861f9f33294d65ab81
506d9100caa070005a890bd496de64c437d6d008
21758ed084cd0e37e735722ee4f3957ea960628a29dfa6c3ce1a1d47a2d6e4f7

HTTP Headers

GET /unpkg/react-dom@18.2.0/umd/react-dom.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
x-amz-server-side-encryption: AES256
server: Pepyaka/1.21.6
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 27839281 642401280, 1036305129
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 40789
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAbc6ZO93n0xtcNLcucTm2i
x-cluster-node-role: proxy
accept-ranges: bytes
date: Wed, 09 Apr 2025 00:05:56 GMT
cache-control: public, max-age=7776000, immutable
age: 125921
last-modified: Fri, 03 May 2024 02:23:53 GMT
etag: W/"64141792105ea4861f9f33294d65ab81"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/unpkg-semver/header-footer-provider/app.bundle.min.js

34.49.229.81

200 OK

36 kB

URL GET
static.parastorage.com/unpkg-semver/header-footer-provider/app.bundle.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (35554)
Size
36 kB (35597 bytes)
Hash
f43c3fcac7e4c00951f7edefc5a3cb6a
480392bbccc2621d908d636708efa6f735ef068d
63f305a01ebc61814279ca7eaeefdabc4c41dc71e5ccab1a330dcfc3b399160f

HTTP Headers

GET /unpkg-semver/header-footer-provider/app.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
x-varnish: 240748770 230643731
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 12431
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAudg4xjiynKm9On8Y5hd73
x-cluster-node-role: serve
accept-ranges: bytes
date: Thu, 10 Apr 2025 10:36:57 GMT
cache-control: public, max-age=1800
age: 1660
last-modified: Fri, 01 Jul 2022 11:55:27 GMT
etag: "f43c3fcac7e4c00951f7edefc5a3cb6a"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/madefor.min.css

34.49.229.81

200 OK

2.3 kB

URL GET
static.parastorage.com/unpkg/@wix/wix-fonts@1.14.0/madefor.min.css
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
Unicode text, UTF-8 text, with very long lines (2276), with no line terminators
Size
2.3 kB (2296 bytes)
Hash
2cf608208ad865c9ed4a01da91ad9484
ec0d24d19de05fae6e87d33122e768c3c1944736
cbf1ece9fac63225795dacd9e368e55dd766b6f56a372843d476167816b7e898

HTTP Headers

GET /unpkg/@wix/wix-fonts@1.14.0/madefor.min.css HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-server-side-encryption: AES256
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 947206363 575985936, 872593227
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 569
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAbc6ZO93n0xtcNLcucTm2i
x-cluster-node-role: proxy
accept-ranges: bytes
date: Tue, 08 Apr 2025 20:32:22 GMT
cache-control: public, max-age=7776000, immutable
age: 138735
last-modified: Mon, 12 Jun 2023 10:38:09 GMT
etag: W/"2cf608208ad865c9ed4a01da91ad9484"
content-type: text/css
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.min.css

34.49.229.81

200 OK

26 kB

URL GET
static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.min.css
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
Unicode text, UTF-8 text, with very long lines (24888), with no line terminators
Size
26 kB (25510 bytes)
Hash
e0d1e3f94b201dfaf9c37f7a02be0bd0
a6d0be2b70fefe216d798c4ab53a075a0f605d0b
febc960163555d26a5ef51673540eb0a997ed119e3653e9c2d89041d6d4fd7b2

HTTP Headers

GET /services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/app.min.css HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: g1WxQw0.QYFrut_Gtpdz09yEpiqNmu.k
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-cluster-self-is-next: true
x-varnish: 144217102 137638835
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAH9ULx/YjubwoH40SQ7GPK
x-cluster-node-role: serve
accept-ranges: bytes
content-length: 4415
via: 1.1 varnish (Varnish/6.0), 1.1 google
date: Thu, 10 Apr 2025 08:13:34 GMT
cache-control: public, max-age=7776000, immutable
age: 10264
last-modified: Wed, 09 Apr 2025 18:33:17 GMT
etag: W/"970b21a506d12ea820ba5f0c982bb691"
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.wixstatic.com/media/22a917_59b1d50700814897907e44537d9eea19~mv2.webp

143.204.55.40

200 OK

25 kB

URL GET
static.wixstatic.com/media/22a917_59b1d50700814897907e44537d9eea19~mv2.webp
IP
143.204.55.40:443
ASN
#16509 AMAZON-02

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.wixstatic.com
Fingerprint00:D2:25:13:B3:EB:D4:B1:02:1F:CA:15:18:D8:2A:26:B4:C7:83:3E
ValidityTue, 01 Apr 2025 13:20:48 GMT - Mon, 30 Jun 2025 13:20:47 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1320x900, Scaling: [none]x[none], YUV color, decoders should clamp
Size
25 kB (25102 bytes)
Hash
6bd3acdaea1a7fddd7d01e1d177c4161
4616eeeaa1b2e50292458d9f8c9f8730ab30a0ee
7bdbc50b3d1af0953e2b5989ef60c555dfb0d3023c92e077412cfc1212299633

HTTP Headers

GET /media/22a917_59b1d50700814897907e44537d9eea19~mv2.webp HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 25102
server: openresty/1.27.1.1
date: Sat, 15 Feb 2025 01:18:56 GMT
expires: Sat, 15 Feb 2025 02:18:56 GMT
cache-control: public, max-age=15552000, immutable
last-modified: Tue, 18 Jun 2024 15:33:38 GMT
etag: "6bd3acdaea1a7fddd7d01e1d177c4161"
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
timing-allow-origin: *
x-seen-by: gcp.us-central-1.media-router-66f677bb5d-vf6nn
via: 1.1 google, 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1yrw47qiy1FK47IdY7JYKqvxubWSTpKVhQnDuWWwfyz-DES_FfJaAQ==
age: 4700742
X-Firefox-Spdy: h2

static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/assets/locale/messages_en.chunk.min.js

34.49.229.81

200 OK

6.5 kB

URL GET
static.parastorage.com/services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/assets/locale/messages_en.chunk.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (6454), with no line terminators
Size
6.5 kB (6454 bytes)
Hash
276bc332c27b63f688f1da05d2b69a3a
77e56f529297d4cef0a275d2e95647852cf975ac
824ab366d893224361ed615abb9b9406d8ec06e434c2b1f923dc7d066d0e30e2

HTTP Headers

GET /services/wix-header/95a449ed17685a3cc30835a8549570008c198155895ab3cd80d7b72c/assets/locale/messages_en.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
x-amz-replication-status: REPLICA
x-amz-server-side-encryption: AES256
x-amz-version-id: lcnCfMT5ZU0vEaSC.0nviQohfQxg7ypv
server: Pepyaka/1.21.6
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
x-varnish: 114806572 53104385, 85751954
via: 1.1 varnish (Varnish/6.0),1.1 varnish (Varnish/6.0), 1.1 google
content-length: 1721
x-cluster-self-is-next: false
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQDv2/wIUmrsg/MW/N5YNXgQ
x-cluster-node-role: proxy
accept-ranges: bytes
date: Thu, 10 Apr 2025 08:13:48 GMT
cache-control: public, max-age=7776000, immutable
age: 10250
last-modified: Wed, 09 Apr 2025 18:33:17 GMT
etag: W/"276bc332c27b63f688f1da05d2b69a3a"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

termsofupdate.wixsite.com/att-mail

34.144.206.118

404 Not Found

2.5 kB

URL User Request GET
termsofupdate.wixsite.com/att-mail
IP
34.144.206.118:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerLet's Encrypt
Subject*.wix.com
Fingerprint7B:0F:DD:BA:9F:1B:D4:AC:ED:34:CF:C4:61:33:1F:EF:81:02:3D:23
ValidityTue, 25 Mar 2025 11:57:00 GMT - Mon, 23 Jun 2025 11:56:59 GMT

File type
HTML document, ASCII text
Size
2.5 kB (2510 bytes)
Hash
cef54b4dc52239d5b4c4bb612e162a8f
3859089353908167c2304cca2fe3364a9e7893ca
084a50f3f06f1b09ff9fcc94714c057d31459add190429e2f233c749e7714d60

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /att-mail HTTP/1.1
Host: termsofupdate.wixsite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 10 Apr 2025 11:04:36 GMT
content-type: text/html; charset=utf-8
x-wix-cache-control: public, max-age=30
x-envoy-upstream-service-time: 5
age: 32
x-seen-by: GilIRCy+Ky2nI9KZaDKzWLxkNjrXdwdgtu6E0yACibU=,m0j2EEknGIVUW/liY8BLLl77sBeKLtHVaXbFQUDNQYM50GMojTKO8miyyJz4IKZA,2d58ifebGbosy5xc+FRalmWMMopqsQ8rHwYhUHuk/RQc3VsNPnyPev/DQBS2u+9zukgjRHkFJT05E9akpS4bcg==,2UNV7KOq4oGjA5+PKsX47Nu8+b2FrLqyPcFweIzdCTK8ZDY613cHYLbuhNMgAom1
vary: Accept-Encoding
x-wix-request-id: 1744283076.7218555140483637353
server-timing: cache;desc=hit, varnish;desc=hit, dc;desc=84_g
server: Pepyaka
x-content-type-options: nosniff
content-encoding: br
via: 1.1 google
glb-x-seen-by: zj+a2E71qOCweet+2KoAwKsDXK9Yj1hJlUA0MXxzy6E=
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.parastorage.com/unpkg-semver/fedops-logger@5/fedops-logger.bundle.min.js

34.49.229.81

200 OK

78 kB

URL GET
static.parastorage.com/unpkg-semver/fedops-logger@5/fedops-logger.bundle.min.js
IP
34.49.229.81:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.parastorage.com
FingerprintDF:F1:A3:70:D4:21:C7:18:A0:E1:76:78:2C:A3:5F:99:08:01:2F:91
ValidityMon, 17 Mar 2025 11:19:26 GMT - Sun, 15 Jun 2025 11:19:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
78 kB (78082 bytes)
Hash
b774cd829b7efa4409d97aeea6fc1d93
43542d7135965c5d68c04a27017ed5755e36e59e
9abcf89d802369380fdd7bd8bfbfcb7db3984e0b052e94ba2f8c9301f2892509

HTTP Headers

GET /unpkg-semver/fedops-logger@5/fedops-logger.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET,GET, OPTIONS, POST
access-control-max-age: 3000
server: Pepyaka/1.21.6
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-varnish: 201879660 206655910
via: 1.1 varnish (Varnish/6.0), 1.1 google
content-length: 19461
x-cluster-self-is-next: true
x-cache-status: HIT
x-seen-by: aVxMblM8KFG3we5NLvyVc+C/YAOVpASqkqFmIx3AhQAH9ULx/YjubwoH40SQ7GPK
x-cluster-node-role: serve
accept-ranges: bytes
date: Thu, 10 Apr 2025 10:51:01 GMT
cache-control: public, max-age=1800
age: 816
last-modified: Mon, 11 Sep 2023 15:17:23 GMT
etag: "b774cd829b7efa4409d97aeea6fc1d93"
content-type: application/javascript
vary: Accept-Encoding
x-cache: hit
glb-x-seen-by: qhk2IXhXaFW+ScoHjRxEUvX1Zxk6j9wOS6tQMkUbOP0=
x-gcp-cdn-pop: ARN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

frog.wix.com/fed?appName=classic-error-pages-statics&src=72&evid=14&session_id=bb9825ad-4707-4ebf-9c38-687696f9fd7f&_=0.43020850627733886&is_rollout=false

52.72.77.220

204 No Content

0 B

URL POST
frog.wix.com/fed?appName=classic-error-pages-statics&src=72&evid=14&session_id=bb9825ad-4707-4ebf-9c38-687696f9fd7f&_=0.43020850627733886&is_rollout=false
IP
52.72.77.220:443
ASN
#14618 AMAZON-AES

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.frog.wix.com
Fingerprint18:30:84:99:42:B9:C1:09:FC:C4:77:7E:F8:DD:66:09:D6:D8:67:83
ValidityFri, 28 Mar 2025 11:02:32 GMT - Thu, 26 Jun 2025 11:02:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /fed?appName=classic-error-pages-statics&src=72&evid=14&session_id=bb9825ad-4707-4ebf-9c38-687696f9fd7f&_=0.43020850627733886&is_rollout=false HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
date: Thu, 10 Apr 2025 11:04:38 GMT
server: nginx
access-control-allow-origin: https://termsofupdate.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

frog.wix.com/hf?src=19&_brandId=wix&_siteBranchId=undefined&_ms=1980&_isHeadless=undefined&_hostingPlatform=undefined&_lv=2.0.985%7CC&evid=514&component=wix_header_2024&is_mobile=false&load_time=148&origin=https%3A%2F%2Ftermsofupdate.wixsite.com%2Fatt-mail&_isca=1&_iscf=1&_ispd=0&_ise=0&_=17442830787630

52.72.77.220

204 No Content

0 B

URL POST
frog.wix.com/hf?src=19&_brandId=wix&_siteBranchId=undefined&_ms=1980&_isHeadless=undefined&_hostingPlatform=undefined&_lv=2.0.985%7CC&evid=514&component=wix_header_2024&is_mobile=false&load_time=148&origin=https%3A%2F%2Ftermsofupdate.wixsite.com%2Fatt-mail&_isca=1&_iscf=1&_ispd=0&_ise=0&_=17442830787630
IP
52.72.77.220:443
ASN
#14618 AMAZON-AES

Requested by
https://termsofupdate.wixsite.com/att-mail
Certificate
IssuerLet's Encrypt
Subject*.frog.wix.com
Fingerprint18:30:84:99:42:B9:C1:09:FC:C4:77:7E:F8:DD:66:09:D6:D8:67:83
ValidityFri, 28 Mar 2025 11:02:32 GMT - Thu, 26 Jun 2025 11:02:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /hf?src=19&_brandId=wix&_siteBranchId=undefined&_ms=1980&_isHeadless=undefined&_hostingPlatform=undefined&_lv=2.0.985%7CC&evid=514&component=wix_header_2024&is_mobile=false&load_time=148&origin=https%3A%2F%2Ftermsofupdate.wixsite.com%2Fatt-mail&_isca=1&_iscf=1&_ispd=0&_ise=0&_=17442830787630 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://termsofupdate.wixsite.com
DNT: 1
Connection: keep-alive
Referer: https://termsofupdate.wixsite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
date: Thu, 10 Apr 2025 11:04:38 GMT
server: nginx
access-control-allow-origin: https://termsofupdate.wixsite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML