Report - email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv

Report Overview

Submitted URL
email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv
IP
54.230.111.25
ASN
#16509 AMAZON-02
Submitted
2023-02-03 16:01:25
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
t.msgf.net	52124	2014-01-22T05:30:09Z	2023-03-13T09:35:28Z	400 B	340 B	54.230.111.73
email.btobtechinsight.com	unknown	2019-12-05T18:00:28Z	2023-03-11T11:22:05Z	1.5 kB	54 kB	54.230.111.9
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
px.meritb2b.com	567015	2021-08-16T09:35:53Z	2023-03-10T09:51:49Z	474 B	302 B	23.43.135.163
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	34.216.86.11
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	64 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	2.0 kB	143.204.42.88
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.7 kB	3.0 kB	93.184.220.29
go.schneider-electric.com	249947	2014-12-28T08:10:54Z	2023-02-18T12:18:46Z	5.5 kB	991 kB	104.17.74.206

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-03	medium	email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv	Phishing
2023-02-03	medium	email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (43)

URL IP Response Size

email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv

54.230.111.9

301 Moved Permanently

167 B

URL HTTP/1.1
email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv
IP
54.230.111.9:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /q/12HNlyIGQozJ3emuUuICSjJO/wv HTTP/1.1
Host: email.btobtechinsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 03 Feb 2023 16:01:14 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv
X-Cache: Redirect from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: aApaExZ-52tvqjQTSUc3D5z3yvO8i6thA-1g3e-yL5Jc41ULX7zmZw==

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3354
Expires: Fri, 03 Feb 2023 16:57:08 GMT
Date: Fri, 03 Feb 2023 16:01:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4943
Expires: Fri, 03 Feb 2023 17:23:37 GMT
Date: Fri, 03 Feb 2023 16:01:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5243
Expires: Fri, 03 Feb 2023 17:28:37 GMT
Date: Fri, 03 Feb 2023 16:01:14 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 15:43:35 GMT
content-type: application/json
age: 1059
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: rZDR07trzmzaXfCnlffi6Y7kGkj2FAw8wTlt1nzniH//cc9C36aueCPtAlCnXVYF7w1yRt56QJg=
x-amz-request-id: 2BAEP44CQJNVQ4HY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 15:23:35 GMT
age: 2259
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 16:01:14 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
8ec48f3e31c219ce03a6688f2d89d889
c98846b5e68fcf7ee758f7d8b054cb152954d30a
ffbf1a0fddb275d795e3eff4c6c94dcf5928111e83203605d5dfc709da650a9a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99678
Date: Fri, 03 Feb 2023 16:01:14 GMT
Etag: "63dc1228-1d7"
Expires: Sat, 04 Feb 2023 19:42:32 GMT
Last-Modified: Thu, 02 Feb 2023 19:42:32 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jDMCW5Udlfqb4pdvcb9H_Td81gOzhY2Y5f97uI7o1IbKLtR7WIkFqg==

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 15:07:19 GMT
age: 3235
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4041
Expires: Fri, 03 Feb 2023 17:08:35 GMT
Date: Fri, 03 Feb 2023 16:01:14 GMT
Connection: keep-alive

email.btobtechinsight.com/t/1gm0mzBKAOdnjFyOx.png

54.230.111.109

301 Moved Permanently

167 B

URL HTTP/1.1
email.btobtechinsight.com/t/1gm0mzBKAOdnjFyOx.png
IP
54.230.111.109:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

HTTP Headers

GET /t/1gm0mzBKAOdnjFyOx.png HTTP/1.1
Host: email.btobtechinsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 03 Feb 2023 16:01:15 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://email.btobtechinsight.com/t/1gm0mzBKAOdnjFyOx.png
X-Cache: Redirect from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kuKZao4gk2dNeJBhW__gUXnPBij2_rvFXwV8HJAQarMXWnhQJdEtZw==

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
3e68ebbca99b5ce5fdf326b59345268d
46b9ed7f93dad524cdf67d7e94c186ff3e9d080c
33c8413afe23486867e3871e4610777867f6fbc0acdd0cee5656a54d6b4b5160

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123491
Date: Fri, 03 Feb 2023 16:01:15 GMT
Etag: "63dc55c6-1d7"
Expires: Sun, 05 Feb 2023 02:19:26 GMT
Last-Modified: Fri, 03 Feb 2023 00:31:02 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dJU2Du7DmDFDDe7Eel6ce6Lkd6mlDAhJocl8iD7bRj_xjRQk4fxmYw==
Age: 6504

px.meritb2b.com/1/e/a.gif?img=true&aqet=em&r=351159668&ca=15742&puu=2090202004&v0=JCONNOR@CONNORPAINTING.COM

23.43.135.163

200 OK

42 B

URL HTTP/1.1
px.meritb2b.com/1/e/a.gif?img=true&aqet=em&r=351159668&ca=15742&puu=2090202004&v0=JCONNOR@CONNORPAINTING.COM
IP
23.43.135.163:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /1/e/a.gif?img=true&aqet=em&r=351159668&ca=15742&puu=2090202004&v0=JCONNOR@CONNORPAINTING.COM HTTP/1.1
Host: px.meritb2b.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Length: 42
Content-Type: image/gif
Expires: Fri, 03 Feb 2023 16:01:15 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 03 Feb 2023 16:01:15 GMT
Connection: keep-alive
X-Robots-Tag: noindex, nofollow

push.services.mozilla.com/

34.216.86.11

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.216.86.11:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: D5NsMczv0ahI8q+y2VWXuA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lbTdj1dIiDJZXIBH5eDxLTR+Slo=

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
f152f3feabd00fd6e17f32823eed2601
283be0ee8133254bc834a99b515f8972d2b92f7e
e98fafd774aabe943dc7f48b8969624aa656ce574a40b204d42d5923d3a6c06c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5343
Cache-Control: max-age=119415
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 16:01:15 GMT
Etag: "63dc4a64-118"
Expires: Sun, 05 Feb 2023 01:11:30 GMT
Last-Modified: Thu, 02 Feb 2023 23:42:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
f152f3feabd00fd6e17f32823eed2601
283be0ee8133254bc834a99b515f8972d2b92f7e
e98fafd774aabe943dc7f48b8969624aa656ce574a40b204d42d5923d3a6c06c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5343
Cache-Control: max-age=119415
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 16:01:15 GMT
Etag: "63dc4a64-118"
Expires: Sun, 05 Feb 2023 01:11:30 GMT
Last-Modified: Thu, 02 Feb 2023 23:42:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
f152f3feabd00fd6e17f32823eed2601
283be0ee8133254bc834a99b515f8972d2b92f7e
e98fafd774aabe943dc7f48b8969624aa656ce574a40b204d42d5923d3a6c06c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 580
Cache-Control: max-age=114653
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 16:01:15 GMT
Etag: "63dc4a64-118"
Expires: Sat, 04 Feb 2023 23:52:08 GMT
Last-Modified: Thu, 02 Feb 2023 23:42:28 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
f152f3feabd00fd6e17f32823eed2601
283be0ee8133254bc834a99b515f8972d2b92f7e
e98fafd774aabe943dc7f48b8969624aa656ce574a40b204d42d5923d3a6c06c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5561
Cache-Control: max-age=119634
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 16:01:15 GMT
Etag: "63dc4a64-118"
Expires: Sun, 05 Feb 2023 01:15:09 GMT
Last-Modified: Thu, 02 Feb 2023 23:42:28 GMT
Server: ECS (amb/6B84)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
f152f3feabd00fd6e17f32823eed2601
283be0ee8133254bc834a99b515f8972d2b92f7e
e98fafd774aabe943dc7f48b8969624aa656ce574a40b204d42d5923d3a6c06c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5408
Cache-Control: max-age=119481
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 16:01:15 GMT
Etag: "63dc4a64-118"
Expires: Sun, 05 Feb 2023 01:12:36 GMT
Last-Modified: Thu, 02 Feb 2023 23:42:28 GMT
Server: ECS (amb/6BA3)
X-Cache: HIT
Content-Length: 280

go.schneider-electric.com/rs/178-GYD-668/images/Icon-g3.png

104.17.74.206

200 OK

2.4 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/Icon-g3.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 330 x 330, 8-bit colormap, non-interlaced\012- data
Size
2.4 kB (2388 bytes)
Hash
929106bef5cfe1cfeddc20906a9790bb
678ed37768a2003c770d7b80c91b1b78004667fd
3f1b3169dbc86e928bd5f6c857b663db2914c40285f84e99127cef61f4e55d53

HTTP Headers

GET /rs/178-GYD-668/images/Icon-g3.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png; charset=utf-8
content-length: 2388
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: 2020-11-14 14:56:13
expires: Fri, 03 Feb 2023 16:02:15 GMT
pragma: 
x-content-type-options: nosniff
cf-cache-status: HIT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=n50R75hPF4iW98s1CEmZift6peFfOGc.Vd3iVAaKMw8-1675440075-0-AQ7p4JUks2QOyDMUqrnfuOKprdazW7gmDJb6DuPOPlKjgtr+wEFHd/LE6KBsJbxYThu2K2rSzYEvjTHQ8brQO9A=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62569da2b4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/yt-new.png

104.17.74.206

200 OK

2.5 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/yt-new.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2454 bytes)
Hash
1d8a02655a361b85defe98396c54da00
a19659fe045c1a0c7c211b9834aca9998d5ff00a
ca79c90966354ec0479e8d60a9f28a30d45bca55ca25b3845ead9da1deebda55

HTTP Headers

GET /rs/178-GYD-668/images/yt-new.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png
content-length: 2454
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Sat, 21 Jan 2023 02:37:27 GMT
etag: "4e3ed4-996-5f2bd0bf6c6da"
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=50sh2ONY2QfNhz1DLTWEjm2PE0RgTT8Qoj27ahgrMoA-1675440075-0-AdpQeTiX/jMBkHm+oLIw12LR2WuAzmHk5tWyphW5FOOs5d5XlOePpw2NPx65w/mq9otXyBGv8yrD/4JbKBCGfH0=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62569dacb4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/TW-new.png

104.17.74.206

200 OK

2.6 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/TW-new.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2585 bytes)
Hash
ddd1766854641d9526b10c18be7e7c8d
9a2b1c10c21edc98d39e2c45ae997ff217dc733a
70c10e83c8d8b58fda595e29403b38ad4b8425d7cabfe562124773761e9efeae

HTTP Headers

GET /rs/178-GYD-668/images/TW-new.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png
content-length: 2585
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Sat, 21 Jan 2023 02:36:35 GMT
etag: "1c33cd-a19-5f2bd08df101e"
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=dDta3NKAZKWK4dIYRnZtWqFVRQJopy4IBVXX4VE7Ru4-1675440075-0-AYswspJXEN6YmMxSD7xbbdpa8xQsGMBDJOd9GsLI8Xk/fya+Otn1UKfmhtbZRUVnE0wcEQUnn0eO+b8hWzUTsLw=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62569daeb4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/fb-img.png

104.17.74.206

200 OK

2.5 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/fb-img.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2480 bytes)
Hash
e6edaf9327abc9984b634e197f7e9431
efd635757e1bcdb7e2b55f3c5a50a041b141e0b0
7a57063849b786fddf2be60d9e5b614a5b2482aff16fc1612acd913900af1e52

HTTP Headers

GET /rs/178-GYD-668/images/fb-img.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png
content-length: 2480
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Sat, 21 Jan 2023 02:37:45 GMT
etag: "4e3ee3-9b0-5f2bd0d14aaa0"
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=HqAr7ozq4IEFgycZ9ynTBVZvU1Ji3RxVX67gMYzoVPc-1675440075-0-AfyQ7YPUxChU1xPvyoP0BwSKn+R1Yfzyj9LDuHRBezla5AIsuqmoSqSN/Plpoz4hRSd12pmdziDtTmz1ERh1qiU=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62569da7b4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/insta-new.png

104.17.74.206

200 OK

3.4 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/insta-new.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3358 bytes)
Hash
a42a7dfdec237261cb5e729e86bb684c
d90b6e9323758c00782eb5947f833dc78721962a
0abcf812e714cafdba9d6fe43d83378c99f03b9b10bd19ea56844ca339f19a63

HTTP Headers

GET /rs/178-GYD-668/images/insta-new.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png
content-length: 3358
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Sat, 21 Jan 2023 02:34:43 GMT
etag: "1c33c0-d1e-5f2bd02305904"
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=PmHr_tCayjhUwka9fEQLosnojVPpoGYbTfLEyAQkZgY-1675440075-0-AeFt1MT0zFpJrCW9U8THLfodtFNMRBzfY0aYBk3YSg94ZsXfuOc7wtxwJl909dlM4kDn/cLNcPeW4wInkH273A4=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62569db1b4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/Icon-s4.png

104.17.74.206

200 OK

2.3 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/Icon-s4.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 330 x 330, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2282 bytes)
Hash
cd2cde8f5840f34c9e132a639ef32024
e5851ae9a0576528044a2f82ac439d50f25088c9
538234608c542fa57a57ef7dc4dda48ad2873771b07d568c55c6d67e96d1033c

HTTP Headers

GET /rs/178-GYD-668/images/Icon-s4.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png; charset=utf-8
content-length: 2282
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: 2020-11-14 14:57:13
expires: Fri, 03 Feb 2023 16:02:15 GMT
pragma: 
x-content-type-options: nosniff
cf-cache-status: HIT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=AL5jGfNNuF3bXabw8PcY7S2D3oQSuEZ5mlLLn9N.jmA-1675440075-0-ASM9wp/zj2Cidk+qGqAjVbcG5gi8A2oSBJjsICU4VzSoY/ZltLpHpWX9HgRyAu+aZENTbnigol1HX2wpgdUuPoo=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c6256adb7b4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/blog-new.png

104.17.74.206

200 OK

2.5 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/blog-new.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 29 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2541 bytes)
Hash
bbb3fb13b611126ef81152ba888ab69b
a726a915a5a8fb4fbb3d66cc0c00bc39403de7c1
56a9d114cd8a9d02b7d45e3ff7874b65929b379fb0c4f1b42e4ef10689822c94

HTTP Headers

GET /rs/178-GYD-668/images/blog-new.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png
content-length: 2541
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Sat, 21 Jan 2023 02:34:42 GMT
etag: "1c33bf-9ed-5f2bd02234d30"
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=M0PHNugWlzUWQMuiifr1v7Qluebivmee3mEUVI9IIc4-1675440075-0-AZV2nqJ0qca71iyr7wURgqlYwWeWD2WtInRJcdnqPn+yfKhKqPnMyEDktqRRWZxU4zonOaVbHsXZnLgLu/Xmrgg=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62569db2b4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/GettyImages-1248607727-500x500-Most-Sustainable-Company-2023.jpg

104.17.74.206

200 OK

563 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/GettyImages-1248607727-500x500-Most-Sustainable-Company-2023.jpg
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
563 kB (562898 bytes)
Hash
77c95737f4115972e36cf77fded2d211
e00c75db7ed902d34f4a7912b63a7fda311466e4
d7b5b785fd803a3c5126bfaafce9fd006a9c26181e23dcdc1b0607ff73825f48

HTTP Headers

GET /rs/178-GYD-668/images/GettyImages-1248607727-500x500-Most-Sustainable-Company-2023.jpg HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/jpeg
content-length: 562898
cf-bgj: h2pri
etag: "4e626f-896d2-5f3496dc8fa79"
last-modified: Sat, 28 Jan 2023 02:06:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=3ldvrQUJLhCgMuzVEldQtKC7_LaMrvbeVL7Qho.svHA-1675440075-0-AXuNaQGljc7nQwT5j1qW6BxR3sMkMRQopCOVoDgfl77QcEq30Z16ZjzSjjkEz4IALyE0sLCVIdmWGEIOPk5QxAY=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c6256adb3b4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/Ln-new.png

104.17.74.206

200 OK

2.4 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/Ln-new.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 34 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2440 bytes)
Hash
0ed95065cda6c6c7a2f2cbb6022de29a
b4903024307c12fae8df03e64665c746d9c9b6b6
0931c7199bd06c0cad19bcdc3e2a36d22796ab2156240c25a74f4fa315a0fa35

HTTP Headers

GET /rs/178-GYD-668/images/Ln-new.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png
content-length: 2440
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Sat, 21 Jan 2023 02:37:45 GMT
etag: "4e3ee4-988-5f2bd0d15ac71"
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=rAN4YftfertA..RM6CM.jnBi9AoY3b30yLdPhsAB1CI-1675440075-0-AUeVW8/D9fxMXnA8Je6PfiXMf90XkhHog2ozwSIc2pG6M6R8eAd51ze5AkE93Ppl9mWO7nAIr12odRpypl9DBGw=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62569da9b4e8-OSL
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/EcoStruxure-Energy-Hub-YouTube-500x500.jpg

104.17.74.206

200 OK

116 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/EcoStruxure-Energy-Hub-YouTube-500x500.jpg
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
116 kB (116371 bytes)
Hash
39eb52e7bbd621e158808c6062a69883
01671d578ae45d292cf541bcdd77a9e6dd150eb6
ed5b7ac3c8fda0725bf2673faf45cedfd4d12145d117eabbf7420d565144743e

HTTP Headers

GET /rs/178-GYD-668/images/EcoStruxure-Energy-Hub-YouTube-500x500.jpg HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/jpeg
content-length: 116371
cf-bgj: h2pri
etag: "1c5684-1c693-5f3338c08e901"
last-modified: Fri, 27 Jan 2023 00:00:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=iPqUI6mekmtviMA1U3oipMkYqQyDyLmBpvPxdlJSmhM-1675440075-0-ATaa0kMAt9b7LQy3+W0uBZ9esBR2DwnlSDzG5x6wCDQBU3srrj95SlBahkDDzZbHXINzF7oFSSiWIkiyvxGNzys=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c6256bde2b4e8-OSL
X-Firefox-Spdy: h2

email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv

54.230.111.109

200 OK

52 kB

URL HTTP/2
email.btobtechinsight.com/q/12HNlyIGQozJ3emuUuICSjJO/wv
IP
54.230.111.109:0
ASN
#16509 AMAZON-02

File type
data
Size
52 kB (52526 bytes)
Hash
315e8a3d271039f686acfa934b792c87
9617be9c032d9aa6b94bb7fb05bd3ff10d66c12a
7ca0afd324d1c0616413c7cca1aaa3ff82dc80e3f2082639c750a9a3a1e0f6cf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /q/12HNlyIGQozJ3emuUuICSjJO/wv HTTP/1.1
Host: email.btobtechinsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: CloudFront
date: Fri, 03 Feb 2023 16:01:14 GMT
cache-control: max-age=0
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OMzDwGWHdqM8brfyDO11prklrBu06itZrx6TLj32nN-19ko3PhLTUg==
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/178-GYD-668/images/SE-US-ASX-JFK-Announcement.png

104.17.74.206

200 OK

282 kB

URL HTTP/2
go.schneider-electric.com/rs/178-GYD-668/images/SE-US-ASX-JFK-Announcement.png
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 600 x 300, 8-bit/color RGB, non-interlaced\012- data
Size
282 kB (282294 bytes)
Hash
0ea4ce8a82651318153e00e9a496066c
342eb2f4f04749263498e94a9f55e578891043d4
9a4c271d6aace276f41276a4f069716d292a01136e77a168d247ee4b41b65f23

HTTP Headers

GET /rs/178-GYD-668/images/SE-US-ASX-JFK-Announcement.png HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: image/png
content-length: 282294
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 25 Jan 2023 20:56:00 GMT
etag: "4e59a9-44eb6-5f31cdc11fab7"
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
accept-ranges: bytes
set-cookie: __cf_bm=SOU_4klt7aW36nL6boHfKUZ7F1569GokEdBZuODa1qo-1675440075-0-AeFADERS6M1EAOtYWNNFXanQFChEcxn9gvLvPQPRujjIMwYfzytQmLWqqMljjUge10PW04LlEp4gRU9k/SYILTo=; path=/; expires=Fri, 03-Feb-23 16:31:15 GMT; domain=.go.schneider-electric.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c6256adb6b4e8-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 16:01:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 16:01:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 16:01:16 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11565 bytes)
Hash
e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 65595
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10166 bytes)
Hash
2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 64882
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6791 bytes)
Hash
e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 64033
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10796 bytes)
Hash
3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:19:26 GMT
age: 84437
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13065 bytes)
Hash
cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 65660
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5641 bytes)
Hash
d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 65007
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

go.schneider-electric.com/rs/schneidersas/images/SE%20Favicon.ico

104.17.74.206

200 OK

0 B

URL HTTP/2
go.schneider-electric.com/rs/schneidersas/images/SE%20Favicon.ico
IP
104.17.74.206:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /rs/schneidersas/images/SE%20Favicon.ico HTTP/1.1
Host: go.schneider-electric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Cookie: __cf_bm=TRrDM4iba9tbnL8W4GpmgKoNQehtg0XnBxHVikHwjuI-1675440075-0-AQUirjWJtwA3zSjw5W2ye7V57KhKd578/mCZhwak/iAbo/vWivRpUShV5o+5IGxH08NT4w/Exjd4euJJunbESGc=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 03 Feb 2023 16:01:15 GMT
content-type: text/plain
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Thu, 02 Feb 2023 23:14:21 GMT
etag: W/"4e3f1a-e36-5f3bfb99c6aaf"
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Fri, 03 Feb 2023 16:02:15 GMT
cache-control: public, max-age=60
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c62585ffcb4e8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

email.btobtechinsight.com/t/1gm0mzBKAOdnjFyOx.png

54.230.111.109

200 OK

0 B

URL HTTP/2
email.btobtechinsight.com/t/1gm0mzBKAOdnjFyOx.png
IP
54.230.111.109:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /t/1gm0mzBKAOdnjFyOx.png HTTP/1.1
Host: email.btobtechinsight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/gif
server: CloudFront
date: Fri, 03 Feb 2023 16:01:15 GMT
cache-control: max-age=0
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2myGGSp9VAEjlZZ33eNZ7QIFaGJcwtAoJ_wcnTnDJCDBaW3eV7QHqw==
X-Firefox-Spdy: h2

t.msgf.net/r/1gm0mzBKAOdnjFyOx.png

54.230.111.73

200 OK

0 B

URL HTTP/2
t.msgf.net/r/1gm0mzBKAOdnjFyOx.png
IP
54.230.111.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /r/1gm0mzBKAOdnjFyOx.png HTTP/1.1
Host: t.msgf.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://email.btobtechinsight.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
server: CloudFront
date: Fri, 03 Feb 2023 16:01:15 GMT
cache-control: max-age=0
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: adEz_VBEnKqocA6WAEjbePzvmJ9ueRkOnoJd3HUvegaKZX5BAjVCmA==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (43)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN