Report - btinternetbgf.weebly.com/

Report Overview

URL

btinternetbgf.weebly.com/
IP

199.34.228.54

ASN

#27647 WEEBLY
Submitted

2023-01-10T07:26:47Z

Access
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

0
Threat Detection Systems

10

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
btinternetbgf.weebly.com (7)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3181	47631	199.34.228.54
cdn2.editmysite.com (9)	11564	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3805	233370	151.101.1.46
fonts.gstatic.com (4)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1956	120595	216.58.207.227
fonts.googleapis.com (4)	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1754	4535	216.58.207.202
www.google.com (1)	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391	1166	142.250.74.132
www.gstatic.com (1)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	473	165689	216.58.207.227
ocsp.sca1b.amazontrust.com (2)	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700	1946	54.230.245.39
contile.services.mozilla.com (1)	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333	391	34.117.237.239
ocsp.pki.goog (14)	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4802	9793	216.58.211.3
push.services.mozilla.com (1)	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606	127	34.214.64.191
r3.o.lencr.org (5)	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1690	4433	23.36.76.226
ocsp.digicert.com (2)	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682	1533	93.184.220.29
ajax.googleapis.com (1)	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400	34693	142.250.74.138
ec.editmysite.com (2)	12806	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1039	757	44.241.20.95
firefox.settings.services.mozilla.com (2)	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782	2374	35.241.9.150
content-signature-2.cdn.mozilla.net (1)	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413	5856	34.160.144.191
img-getpocket.cdn.mozilla.net (6)	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3246	57440	34.120.237.76
ssl.google-analytics.com (1)	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374	17814	142.250.74.136

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-09	medium	btinternetbgf.weebly.com/	BT Group plc
2023-01-09	medium	btinternetbgf.weebly.com/	BT Group plc
2023-01-09	medium	btinternetbgf.weebly.com/	BT Group plc
2023-01-09	medium	btinternetbgf.weebly.com/	BT Group plc
2023-01-09	medium	btinternetbgf.weebly.com/	BT Group plc
2023-01-09	medium	btinternetbgf.weebly.com/	BT Group plc

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-10	medium	btinternetbgf.weebly.com/	Phishing
2023-01-10	medium	btinternetbgf.weebly.com/	Phishing
2023-01-10	medium	btinternetbgf.weebly.com/files/main_style.css?1656769394	Phishing
2023-01-10	medium	btinternetbgf.weebly.com/files/theme/custom.js?1573850854	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

HTTP Transactions (64)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.76.226:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

e6b7a72139d0ef7688330456e9be9a4c

e130a94e7d531768300071764dd1e81fee5bbbcb

d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12125
Expires: Tue, 10 Jan 2023 10:48:41 GMT
Date: Tue, 10 Jan 2023 07:26:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.76.226:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

1f67827b21be68d925837dd729590f2d

dc24511141f5352e496b300d7d7e81b0cffb7475

afb1850e7c16f02d267a1310f1681367ecf598816fc62bd02447ffcd26117a9f

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFB1850E7C16F02D267A1310F1681367ECF598816FC62BD02447FFCD26117A9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2901
Expires: Tue, 10 Jan 2023 08:14:57 GMT
Date: Tue, 10 Jan 2023 07:26:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.76.226:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

89a058935fd04697c87e9441fbb466a9

59b5b08119374b1da34cff7e43a7c6dc80103f6e

3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6931
Expires: Tue, 10 Jan 2023 09:22:07 GMT
Date: Tue, 10 Jan 2023 07:26:36 GMT
Connection: keep-alive

btinternetbgf.weebly.com/

199.34.228.54

301 Moved Permanently

378

URL HTTP/1.1

btinternetbgf.weebly.com/
IP

199.34.228.54:0
ASN

#27647 WEEBLY

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text

Size

378
Hash

13c679a4a9d9bda95489d54dde76cde3

7d4a81708928fd4235274b461ab4c34143040bf0

bd309fc0cdd92d9cd1ebc04ccff439016484861292866fbe46c128582728bdc4

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

                                        GET / HTTP/1.1
Host: btinternetbgf.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        HTTP/1.1 301 Moved Permanently
Date: Tue, 10 Jan 2023 07:26:36 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=btinternetbgf.weebly.com
Vary: X-W-SSL,User-Agent
Location: https://btinternetbgf.weebly.com/
X-Host: grn27.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 378
Keep-Alive: timeout=10, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939

URL HTTP/2

firefox.settings.services.mozilla.com/v1/
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (939), with no line terminators

Size

939
Hash

14cd9a0afb6ba9a763651d5112760d1e

75d7b104ab9ab11fbb73c3f348b43b0119b5adfa

4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

                                        GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 10 Jan 2023 06:41:42 GMT
content-type: application/json
age: 2694
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5348

URL HTTP/2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP

34.160.144.191:0
ASN

#15169 GOOGLE

Magic

PEM certificate\012- , ASCII text

Size

5348
Hash

b1fcd419a4245617397846e8d17233f6

2a037ce244587640b27ead9a0ec2af4f862d91b2

e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

                                        GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
x-amz-id-2: vaitaDGh4q5qitoCLUl+iqbkvCVgnDPgRkl9aRfQ898EvM5xnWhf7eGc0lDp5alPH27YwwZN6Rj4l4LNmJ6Q/A==
x-amz-request-id: K8HWQ5JF97KM7HZJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 10 Jan 2023 07:01:33 GMT
age: 1503
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

URL HTTP/2

contile.services.mozilla.com/v1/tiles
IP

34.117.237.239:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with no line terminators

Size

12
Hash

23e88fb7b99543fb33315b29b1fad9d6

a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

                                        GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
date: Tue, 10 Jan 2023 07:26:36 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329

URL HTTP/2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (329), with no line terminators

Size

329
Hash

0333b0655111aa68de771adfcc4db243

63f295a144ac87a7c8e23417626724eeca68a7eb

60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

                                        GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 10 Jan 2023 06:33:45 GMT
age: 3172
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471

URL HTTP/1.1

ocsp.digicert.com/
IP

93.184.220.29:0
ASN

#15133 EDGECAST

Magic

data

Size

471
Hash

9490cb05d21ab4072140b621d5769b74

59221e5a8466cc7febbfaa81b211e1fd40ee4d35

4d712a9dd2b9da80e6810f89c95541073dde8ce859dd0f61f4ddcac5ba725184

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3986
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Last-Modified: Tue, 10 Jan 2023 06:20:12 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471

URL HTTP/1.1

ocsp.digicert.com/
IP

93.184.220.29:0
ASN

#15133 EDGECAST

Magic

data

Size

471
Hash

e8e0c910ffff02061a1806b1aa8cf9d2

c5bf0e7ad96e89b17a657fcb1e1cd1aa6d15ab89

896f08fa0030a1313df1f05ef47c5d1f11caa9094380fc026b95193164005448

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2547
Cache-Control: max-age=94958
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Etag: "63bbd928-1d7"
Expires: Wed, 11 Jan 2023 09:49:15 GMT
Last-Modified: Mon, 09 Jan 2023 09:06:48 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

btinternetbgf.weebly.com/

199.34.228.54

200 OK

6490

URL HTTP/1.1

btinternetbgf.weebly.com/
IP

199.34.228.54:0
ASN

#27647 WEEBLY

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2260)

Size

6490
Hash

8a0dd7f459ef332547412c0103445fa2

19bccd6f334ee6cc35d0811383743f5244aaef3a

2cb5dead3a3e8d698beff741e7c34444c98d907c78cdd911e77e358649931b52

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

                                        GET / HTTP/1.1
Host: btinternetbgf.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                        HTTP/1.1 200 OK
Date: Tue, 10 Jan 2023 07:26:37 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=btinternetbgf.weebly.com
language=en; expires=Tue, 24-Jan-2023 07:26:37 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"469b0efe40eadc1aa88e34860b830278-gzip"
Content-Encoding: gzip
X-Host: blu125.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 6490
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1673309783

151.101.1.46

200 OK

1372

URL HTTP/2

cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1673309783
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (3600), with no line terminators

Size

1372
Hash

121a5b9688d8e70ee7bb06cc79491f76

3a28220baa7d8879270c8311bed7dddefa7e43e9

181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40

HTTP Headers

                                        GET /js/site/footerSignup.js?buildTime=1673309783 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 09 Jan 2023 15:05:08 GMT
etag: "63bc2d24-e10"
expires: Tue, 24 Jan 2023 00:19:20 GMT
cache-control: max-age=1209600
x-host: blu139.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 25638
x-served-by: cache-sjc10083-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 47
x-timer: S1673335598.654078,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1656620022&

151.101.1.46

200 OK

32800

URL HTTP/2

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1656620022&
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (65024)

Size

32800
Hash

58a9c1c02a5743ff2107715d041d28b7

619d9394e8b3afce9f9cc066b924ddb5d3265265

98b8090e2292b69bb8ad0ef4082f55458b891130ee6b3d9c6fce5075eec64dbf

HTTP Headers

                                        GET /js/lang/en/stl.js?buildTime=1656620022& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 19:53:10 GMT
etag: "639ccca6-2c22a"
expires: Tue, 03 Jan 2023 07:32:33 GMT
cache-control: max-age=1209600
x-host: grn30.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 604443
x-served-by: cache-sjc10060-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1649, 1
x-timer: S1673335598.653722,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 32800
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/theme-plugins.js?buildTime=1656620022

151.101.1.46

200 OK

3747

URL HTTP/2

cdn2.editmysite.com/js/site/theme-plugins.js?buildTime=1656620022
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (12622), with no line terminators

Size

3747
Hash

326fac3bf2f5a48ddb695ce00260efd8

824134c8f3cbfc5b0ce818dcb0befc99842e4fa6

8fa81dbf4afb7142ee09f89d14e23fd44928c782bced6ef6c44fe9515429af50

HTTP Headers

                                        GET /js/site/theme-plugins.js?buildTime=1656620022 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 19:54:38 GMT
etag: "639cccfe-314e"
expires: Wed, 11 Jan 2023 18:18:56 GMT
cache-control: max-age=1209600
x-host: blu79.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 1084062
x-served-by: cache-sjc10071-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 90, 1
x-timer: S1673335598.653949,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3747
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/old/fancybox.css?1656620022

151.101.1.46

200 OK

1218

URL HTTP/2

cdn2.editmysite.com/css/old/fancybox.css?1656620022
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (3910)

Size

1218
Hash

b644e92258f4c7c0b4270047652d1e60

93734d52ee9e86a768159e514076051813c39cd9

29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907

HTTP Headers

                                        GET /css/old/fancybox.css?1656620022 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 16 Dec 2022 19:54:20 GMT
etag: "639cccec-f47"
expires: Tue, 03 Jan 2023 11:17:25 GMT
cache-control: max-age=1209600
x-host: blu56.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 590942
x-served-by: cache-sjc10020-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 16, 1
x-timer: S1673335598.662265,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/social-icons.css?buildtime=1656620022

151.101.1.46

200 OK

1638

URL HTTP/2

cdn2.editmysite.com/css/social-icons.css?buildtime=1656620022
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (13080)

Size

1638
Hash

03f309e96ce0dd83ba8f7754ff3cf854

778de49f4961a2b63912c3aebc2f45444df76b63

6f5dfae580d7ee9bb236fca05f0562f1e6a5fa5362c6607a0aab3e1c2d483192

HTTP Headers

                                        GET /css/social-icons.css?buildtime=1656620022 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 16 Dec 2022 19:54:14 GMT
etag: W/"639ccce6-3319"
expires: Thu, 12 Jan 2023 10:39:36 GMT
cache-control: max-age=1209600
x-host: blu78.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 1025221
x-served-by: cache-sjc10030-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 39, 1
x-timer: S1673335598.662549,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1638
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/sites.css?buildTime=1656620022

151.101.1.46

200 OK

29746

URL HTTP/2

cdn2.editmysite.com/css/sites.css?buildTime=1656620022
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (65536), with no line terminators

Size

29746
Hash

d10158b22b553f723d99dc78eaee6390

80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6

939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e

HTTP Headers

                                        GET /css/sites.css?buildTime=1656620022 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 16 Dec 2022 19:54:14 GMT
etag: W/"639ccce6-347ac"
expires: Thu, 12 Jan 2023 10:13:43 GMT
cache-control: max-age=1209600
x-host: grn32.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 1026774
x-served-by: cache-sjc10070-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1706, 1
x-timer: S1673335598.653497,VS0,VE5
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

7a82bb3ba0a326fb70f08e8c0f60f482

705e262596426fe42f6255ea5235bb34963387bf

172b73337c73e68ac341cf3527a49a49ad688fb954b67500cadc434b0e84f640

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn2.editmysite.com/js/site/main.js?buildTime=1656620022

151.101.1.46

200 OK

146400

URL HTTP/2

cdn2.editmysite.com/js/site/main.js?buildTime=1656620022
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (32147)

Size

146400
Hash

81b8673c5d3aa3ab8c0574f2a8f0e3b4

2e0661bc7907d9e2703b3347c3fec579f0aef5d6

0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40

HTTP Headers

                                        GET /js/site/main.js?buildTime=1656620022 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 19:54:38 GMT
etag: "639cccfe-74804"
expires: Tue, 03 Jan 2023 08:45:31 GMT
cache-control: max-age=1209600
x-host: grn63.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 600064
x-served-by: cache-sjc10064-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 1
x-timer: S1673335598.653828,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2

cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png

151.101.1.46

200 OK

9677

URL HTTP/2

cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data

Size

9677
Hash

6e0f7ad31bf187e0d88fc5787573ba71

14e8b85cc32a01c8901e4ac0160582d29a45e9e6

580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd

HTTP Headers

                                        GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
x-guploader-uploadid: ADPycdujQNpHaXULXK5hWOudOsrFbrCOJBmkXkf6lNHnzHxB1q3PphW4yFVZQbxms7rfGEwEu0IdDaAyLbpAPqDN6NvCrqCgiKDD
cache-control: public, max-age=86400, s-maxage=259200
expires: Thu, 06 Oct 2022 22:59:09 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
via: 1.1 varnish
age: 203063
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 75
x-timer: S1673335598.655534,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.214.64.191

101 Switching Protocols

URL HTTP/1.1

push.services.mozilla.com/
IP

34.214.64.191:0
ASN

#16509 AMAZON-02

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vR76mw0U1p7MG0w135qcNQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                        HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: k4mNAq1I2r1Iec8dARgk3J2TvTQ=

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

7a82bb3ba0a326fb70f08e8c0f60f482

705e262596426fe42f6255ea5235bb34963387bf

172b73337c73e68ac341cf3527a49a49ad688fb954b67500cadc434b0e84f640

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

7a82bb3ba0a326fb70f08e8c0f60f482

705e262596426fe42f6255ea5235bb34963387bf

172b73337c73e68ac341cf3527a49a49ad688fb954b67500cadc434b0e84f640

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

7a82bb3ba0a326fb70f08e8c0f60f482

705e262596426fe42f6255ea5235bb34963387bf

172b73337c73e68ac341cf3527a49a49ad688fb954b67500cadc434b0e84f640

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

7a82bb3ba0a326fb70f08e8c0f60f482

705e262596426fe42f6255ea5235bb34963387bf

172b73337c73e68ac341cf3527a49a49ad688fb954b67500cadc434b0e84f640

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js

142.250.74.138

200 OK

33593

URL HTTP/2

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP

142.250.74.138:0
ASN

#15169 GOOGLE

Magic

ASCII text, with very long lines (65483)

Size

33593
Hash

a54a444f20643b131117dc2112cca05f

074964746b12ff1d30f7656310d6154ae1cc98b5

aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830

HTTP Headers

                                        GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Jan 2023 18:31:58 GMT
expires: Sun, 07 Jan 2024 18:31:58 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 219279
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

btinternetbgf.weebly.com/files/main_style.css?1656769394

199.34.228.54

200 OK

8131

URL HTTP/1.1

btinternetbgf.weebly.com/files/main_style.css?1656769394
IP

199.34.228.54:0
ASN

#27647 WEEBLY

Magic

ASCII text, with very long lines (936)

Size

8131
Hash

98d58a2db231adf7adbe7b08a13e0ea5

8bed461628e2365c2f48acd753d6b12f69584130

c2d07ef2c77efa67de7557cefd78f1107eda1fd5b0784367006f3dbfad3c1f46

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

                                        GET /files/main_style.css?1656769394 HTTP/1.1
Host: btinternetbgf.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 07:26:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu40.sf2p.intern.weebly.net
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

7a82bb3ba0a326fb70f08e8c0f60f482

705e262596426fe42f6255ea5235bb34963387bf

172b73337c73e68ac341cf3527a49a49ad688fb954b67500cadc434b0e84f640

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

btinternetbgf.weebly.com/files/theme/custom.js?1573850854

199.34.228.54

200 OK

2637

URL HTTP/1.1

btinternetbgf.weebly.com/files/theme/custom.js?1573850854
IP

199.34.228.54:0
ASN

#27647 WEEBLY

Magic

ASCII text

Size

2637
Hash

0ebe47e011abac0beb0353c38e6fe5f6

c234e549ad5d546b3901f209a50639352dfd23db

8f6c0204657565452ae33714fa329826c79cbea1af9ab891e70abfc9cd66e5fa

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc
fortinet	Phishing

HTTP Headers

                                        GET /files/theme/custom.js?1573850854 HTTP/1.1
Host: btinternetbgf.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 07:26:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 10 May 2022 00:14:12 GMT
x-rgw-object-type: Normal
ETag: W/"167b5f2a55a6ac2775d799bf9a87343d"
x-amz-request-id: tx000000000000001c5d29e-0062848988-b9fbc63-sfo1
X-Storage-Bucket: za16d
X-Storage-Object: a16df105a4c2f66f83e36051a5d4b3e7399fadc9046f779b7f373a5dc46b2361
X-Host: blu84.sf2p.intern.weebly.net
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2c4b7b4dc5383dd277a7c79aae915be1

308dc2d2ad250a4e05fdbbe7520558f77959490a

ddf86e1a0a2912dc58e41cf439e09b522aeffec51399311c7483ff493b79a2cc

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2c4b7b4dc5383dd277a7c79aae915be1

308dc2d2ad250a4e05fdbbe7520558f77959490a

ddf86e1a0a2912dc58e41cf439e09b522aeffec51399311c7483ff493b79a2cc

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1656620022

151.101.1.46

200 OK

471

URL HTTP/2

cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1656620022
IP

151.101.1.46:0
ASN

#54113 FASTLY

Magic

data

Size

471
Hash

2c4b7b4dc5383dd277a7c79aae915be1

308dc2d2ad250a4e05fdbbe7520558f77959490a

ddf86e1a0a2912dc58e41cf439e09b522aeffec51399311c7483ff493b79a2cc

HTTP Headers

                                        GET /js/site/main-customer-accounts-site.js?buildTime=1656620022 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 19:54:38 GMT
etag: "639cccfe-82588"
expires: Sat, 31 Dec 2022 00:53:41 GMT
cache-control: max-age=1209600
x-host: blu42.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 10 Jan 2023 07:26:37 GMT
age: 887573
x-served-by: cache-sjc10026-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 1
x-timer: S1673335598.655312,VS0,VE3
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159020
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2c4b7b4dc5383dd277a7c79aae915be1

308dc2d2ad250a4e05fdbbe7520558f77959490a

ddf86e1a0a2912dc58e41cf439e09b522aeffec51399311c7483ff493b79a2cc

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

30928

URL HTTP/2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP

216.58.207.227:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data

Size

30928
Hash

ac0d2859ea5f8fd6bcb3c305c08ec184

7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7

ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

                                        GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btinternetbgf.weebly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 07:08:09 GMT
expires: Sat, 06 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 346708
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2c4b7b4dc5383dd277a7c79aae915be1

308dc2d2ad250a4e05fdbbe7520558f77959490a

ddf86e1a0a2912dc58e41cf439e09b522aeffec51399311c7483ff493b79a2cc

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

23580

URL HTTP/2

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP

216.58.207.227:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data

Size

23580
Hash

e1b3b5908c9cf23dfb2b9c52b9a023ab

fcd4136085f2a03481d9958cc6793a5ed98e714c

918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

                                        GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btinternetbgf.weebly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 323605
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2

216.58.207.227

200 OK

23236

URL HTTP/2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP

216.58.207.227:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data

Size

23236
Hash

716309aab2bca045f9627f63ad79d0bf

38804233a29aaf975d557fe14e762c627bef76e0

115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429

HTTP Headers

                                        GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btinternetbgf.weebly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 03 Jan 2023 17:11:14 GMT
expires: Wed, 03 Jan 2024 17:11:14 GMT
cache-control: public, max-age=31536000
age: 569723
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2

216.58.207.227

200 OK

39056

URL HTTP/2

fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
IP

216.58.207.227:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data

Size

39056
Hash

ab20a3cbee44939ad33cb2d162484f23

f4df3e71cc8aebd85b6207d4ac35c76c602c2779

0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b

HTTP Headers

                                        GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btinternetbgf.weebly.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 19:31:09 GMT
expires: Tue, 09 Jan 2024 19:31:09 GMT
cache-control: public, max-age=31536000
age: 42928
last-modified: Mon, 15 Aug 2022 18:05:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

216.58.211.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2c4b7b4dc5383dd277a7c79aae915be1

308dc2d2ad250a4e05fdbbe7520558f77959490a

ddf86e1a0a2912dc58e41cf439e09b522aeffec51399311c7483ff493b79a2cc

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 07:26:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

btinternetbgf.weebly.com/uploads/1/4/2/3/142382429/bt-logo-2019-svg.png

199.34.228.54

200 OK

4234

URL HTTP/1.1

btinternetbgf.weebly.com/uploads/1/4/2/3/142382429/bt-logo-2019-svg.png
IP

199.34.228.54:0
ASN

#27647 WEEBLY

Magic

PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data

Size

4234
Hash

4598cfe6027e91cde0385425ba9ef1aa

e9c2c6559d646917545750983497231c8a4c6533

86c09fa436ed1ac20df0496c89a9c918164df0b2f72f9288291cbbbc85e96559

Detections

Analyzer	Verdict	Alert
openphish	BT Group plc

HTTP Headers

                                        GET /uploads/1/4/2/3/142382429/bt-logo-2019-svg.png HTTP/1.1
Host: btinternetbgf.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 07:26:38 GMT
Content-Type: image/png
Content-Length: 4234
Connection: keep-alive
Last-Modified: Wed, 05 Jan 2022 09:45:18 GMT
x-rgw-object-type: Normal
ETag: "4598cfe6027e91cde0385425ba9ef1aa"
x-amz-request-id: tx0000000000000031b349e-006285909d-b9fbc63-sfo1
X-Storage-Bucket: z86c0
X-Storage-Object: 86c09fa436ed1ac20df0496c89a9c918164df0b2f72f9288291cbbbc85e96559
X-Host: grn62.sf2p.intern.weebly.net
Accept-Ranges: bytes

btinternetbgf.weebly.com/files/theme/plugins.js?1573850854

199.34.228.54

200 OK

18075

URL HTTP/1.1

btinternetbgf.weebly.com/files/theme/plugins.js?1573850854
IP

199.34.228.54:0
ASN

#27647 WEEBLY

Magic

ASCII text

Size

18075
Hash

35f647b2742c690703076a35ee299d33

d8f040a94a3db61a2eb9c4d22906dd515b85fa75

89b301a048d2d58d670d3f1767422cc357dd9e66a0b0a1fd047b5165c30c87c2

HTTP Headers

                                        GET /files/theme/plugins.js?1573850854 HTTP/1.1
Host: btinternetbgf.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://btinternetbgf.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                        HTTP/1.1 200 OK
Server: nginx
Date: Tue, 10 Jan 2023 07:26:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 28 Jan 2022 02:17:25 GMT
x-rgw-object-type: Normal
ETag: W/"86db86f3ec46612c95a552a133cf2501"
x-amz-request-id: tx000000000000001ad1151-0062847a5a-b9fbc77-sfo1
X-Storage-Bucket: z8a29
X-Storage-Object: 8a295e631b0d74ebc6b734fdd9a2d5b29653da10a362599b0004ee135c115ce9
X-Host: grn73.sf2p.intern.weebly.net
Content-Encoding: gzip

fonts.googleapis.com/css?family=Lato:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext

216.58.207.202

200 OK

943

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (25)

#1 JS:Script (size: 3600)

#2 JS:Script (size: 117)

#3 JS:Script (size: 1756)

#4 JS:Script (size: 35)

#5 JS:Script (size: 2997)

#6 JS:Script (size: 263)

#7 JS:Script (size: 76444)

#8 JS:Script (size: 2256)

#9 JS:Script (size: 1157)

#10 JS:Script (size: 60)

#11 JS:Script (size: 60)

#12 JS:Script (size: 62)

#13 JS:Script (size: 46274)

#14 JS:Script (size: 8987)

#15 JS:Script (size: 75006)

#16 JS:Script (size: 180778)

#17 JS:Script (size: 0)

#18 JS:Script (size: 62)

#19 JS:Script (size: 188)

#20 JS:Script (size: 664)

#21 JS:Script (size: 850)

#22 JS:Script (size: 412950)

#23 JS:Script (size: 12622)

#24 JS:Script (size: 266)

#25 JS:Script (size: 32)

HTTP Transactions (64)

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

Detections

HTTP Headers

URL HTTP/2

IP