btconnect-103876btconnectmail.weebly.com/
199.34.228.54200 OK 7.6 kB URL User Request GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/
IP 199.34.228.54:443
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2437), with CRLF, LF line terminators
Hash 932875d54fb4eb34b431c726362357be
db524cd4d604b770629cd1c7279ec65730722c22
9aa11a2b5ee62a00fb5c46e3113a6a22ceacd0acd6a87a02f3cc0c480723969c
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET / HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 May 2023 00:24:03 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=btconnect-103876btconnectmail.weebly.com
language=en; expires=Wed, 14-Jun-2023 00:24:03 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"932875d54fb4eb34b431c726362357be-gzip"
Content-Encoding: gzip
X-Host: grn159.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 7601
Keep-Alive: timeout=10, max=60
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/fonts/Roboto_Mono/font.css?2
151.101.1.46200 OK 327 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Roboto_Mono/font.css?2
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
Hash 204d9ee2b1ba92dce365ebf87bb351bd
ad8b5c3b16ac7193ebc1a549a6e62f07d6a792bc
dc887b20e92d735dce5c25a3351ef2b8b6b189e856a3ee64cb0429a3d7f46730
GET /fonts/Roboto_Mono/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 26 May 2023 17:31:09 GMT
etag: "6470ecdd-6c7"
expires: Mon, 12 Jun 2023 10:46:09 GMT
cache-control: max-age=1209600
x-host: grn142.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 135475
x-served-by: cache-sjc10059-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 35, 1
x-timer: S1685492644.414229,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 327
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
151.101.1.46200 OK 34 kB URL GET HTTP/2 cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65483)
Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7
06e872300088b9ba8a08427d28ed0efcdf9c6ff5
61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 30 May 2023 20:34:17 GMT
etag: "64765dc9-16dc4"
expires: Tue, 13 Jun 2023 23:08:15 GMT
cache-control: max-age=1209600
x-host: blu148.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 4549
x-served-by: cache-sjc10032-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 10
x-timer: S1685492644.414569,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1234&
151.101.1.46200 OK 33 kB URL GET HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1234&
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65024)
Hash cf9326df57f8fac4a5eb60e96f429d0f
8e0e2f58ecd156bd1e6d180c9120746f8e646882
9f17849278ea3971ca67fe008881f2e042351b3b0f279c38efde4f4b02ab8f75
GET /js/lang/en/stl.js?buildTime=1234& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 May 2023 16:51:39 GMT
etag: "6474d81b-2c7eb"
expires: Tue, 13 Jun 2023 12:39:42 GMT
cache-control: max-age=1209600
x-host: grn100.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 42262
x-served-by: cache-sjc10047-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 8
x-timer: S1685492644.414550,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33051
X-Firefox-Spdy: h2
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
151.101.1.46200 OK 9.7 kB URL GET HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Hash 6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtLZbuzjKssmjL14qZ2UMML8_s_ieVOpY4WXY0H88RLLBOnpDdeVGi8y7o1e-ccDVKb2GgrG89NV4WkKXnXXdoJig
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 07 Apr 2023 00:33:59 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
via: 1.1 varnish
age: 258231
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1447
x-timer: S1685492644.414931,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1680733730&
151.101.1.46200 OK 33 kB URL GET HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1680733730&
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65024)
Hash cf9326df57f8fac4a5eb60e96f429d0f
8e0e2f58ecd156bd1e6d180c9120746f8e646882
9f17849278ea3971ca67fe008881f2e042351b3b0f279c38efde4f4b02ab8f75
GET /js/lang/en/stl.js?buildTime=1680733730& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 May 2023 16:51:39 GMT
etag: "6474d81b-2c7eb"
expires: Tue, 13 Jun 2023 11:43:42 GMT
cache-control: max-age=1209600
x-host: grn43.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 45622
x-served-by: cache-sjc10079-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 22, 8
x-timer: S1685492644.414979,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33051
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1685489145
151.101.1.46200 OK 1.4 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1685489145
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (3600), with no line terminators
Hash 40b81b2d52ba9d2e2c64c31ff6a24cd7
6b5689250661646ecbb841f2475f1556a113373c
e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96
GET /js/site/footerSignup.js?buildTime=1685489145 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 30 May 2023 22:37:58 GMT
etag: "64767ac6-e10"
expires: Tue, 13 Jun 2023 23:28:07 GMT
cache-control: max-age=1209600
x-host: grn45.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 3357
x-served-by: cache-sjc10038-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 1
x-timer: S1685492644.414964,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Oswald/font.css?2
151.101.1.46200 OK 300 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Oswald/font.css?2
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
Hash 775b24a6bf448ef1741a248f4d0d1798
c744599bc3828d7cf61211f932a658893eb0ed19
3579bad82b0dbe568857f5550630f16e8b3cc434c0e4d3d04549033b7b8eb814
GET /fonts/Oswald/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 May 2023 17:52:31 GMT
etag: "646babdf-4f0"
expires: Tue, 06 Jun 2023 10:00:31 GMT
cache-control: max-age=1209600
x-host: blu90.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 656614
x-served-by: cache-sjc10054-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 3
x-timer: S1685492644.419597,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 300
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1234
151.101.1.46200 OK 1.2 kB URL GET HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1234
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (3910)
Hash 1dcebbb5a1eb8b028310ceeb72a339b3
e254b7a35ac189fd1ce9cf8bd78593bebfe27d7d
865cb87de9fc4d6530edce21f0103107abae6abe45cabdff2ad9af067b3d8e0a
GET /css/old/fancybox.css?1234 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 May 2023 17:56:25 GMT
etag: "646bacc9-f47"
expires: Tue, 06 Jun 2023 08:54:20 GMT
cache-control: max-age=1209600
x-host: grn129.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 660584
x-served-by: cache-sjc10077-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 15, 5
x-timer: S1685492644.421849,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1234
151.101.1.46200 OK 1.6 kB URL GET HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1234
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (13080)
Hash c34412d227eed9e26fdefefd963c9c7d
1882d0623262789fba50196dd9d77ed1f27e0307
d46b58ce443f7dc1f90f69a90b7e7591fec4b388faeba7c51204dbbc360c3a45
GET /css/social-icons.css?buildtime=1234 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 26 May 2023 21:25:40 GMT
etag: W/"647123d4-3319"
expires: Mon, 12 Jun 2023 15:02:17 GMT
cache-control: max-age=1209600
x-host: grn9.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 120107
x-served-by: cache-sjc10023-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 49, 3
x-timer: S1685492644.421996,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1639
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Karla/font.css?2
151.101.1.46200 OK 322 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Karla/font.css?2
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
Hash 922930888bc544e58fc2692226682cf3
a913741c42ea82dc87d8c873ca28c638ffbe7fd7
25ce2816a5a963942b0334337f6b6c931ee73cf0fcc1c976355353659c89c75b
GET /fonts/Karla/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 May 2023 17:52:31 GMT
etag: "646babdf-6ae"
expires: Tue, 06 Jun 2023 10:24:38 GMT
cache-control: max-age=1209600
x-host: grn154.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 655166
x-served-by: cache-sjc10062-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 15, 1
x-timer: S1685492644.421857,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 322
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1680733730
151.101.1.46200 OK 30 kB URL GET HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1680733730
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9b0cea89efe53d91d78d11ffd47932d9
4923ab33295645e85508386f7b6b884ba671c25a
004224d90390c7cd683c2b1911c8ff02da3c2f1dd84db133333f3d704adb7355
GET /css/sites.css?buildTime=1680733730 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 23 May 2023 22:56:49 GMT
etag: W/"646d44b1-347ac"
expires: Wed, 07 Jun 2023 11:39:42 GMT
cache-control: max-age=1209600
x-host: blu46.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 564262
x-served-by: cache-sjc10065-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 6
x-timer: S1685492644.419738,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1680733730
151.101.1.46200 OK 146 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1680733730
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash f88ad9fb085a6c0dc219e8aa282ce47b
28d40d567859f99251bdc3337bafa088224da780
ba97504b136b447bea2ecc59111ba5a63200d2662f92936d0f7c206492b989d8
GET /js/site/main.js?buildTime=1680733730 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 16 May 2023 23:16:09 GMT
etag: "64640eb9-74804"
expires: Thu, 01 Jun 2023 09:19:48 GMT
cache-control: max-age=1209600
x-host: blu81.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 1091056
x-served-by: cache-sjc10071-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 28, 1
x-timer: S1685492644.414533,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1680733730
151.101.1.46200 OK 159 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1680733730
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (32007)
Size 159 kB (158939 bytes)
Hash 86589ea76431c78a471c397bd750cc57
accd9a15cbe77f8be70a605ce987a2ba3db19ae3
58ceb3a02e83ae91764908f0065b307ac2052559363d88af03482174261708b0
GET /js/site/main-customer-accounts-site.js?buildTime=1680733730 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 24 May 2023 18:55:10 GMT
etag: "646e5d8e-82537"
expires: Thu, 08 Jun 2023 07:38:05 GMT
cache-control: max-age=1209600
x-host: blu85.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:04 GMT
age: 492359
x-served-by: cache-sjc10083-SJC, cache-bma1633-BMA
x-cache: HIT, HIT
x-cache-hits: 33, 1
x-timer: S1685492644.414944,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 158939
X-Firefox-Spdy: h2
btconnect-103876btconnectmail.weebly.com/files/theme/MutationObserver.js
199.34.228.54200 OK 6.8 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/theme/MutationObserver.js
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash e52201e96af18dd02c85eb627c843491
5bcdd1480b9bebcddb0d82083bdf03a7435d59a1
397452d9f6a2ea6a2135b45c9e40139c68ac6661f3bab4413e7299586ccb408a
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /files/theme/MutationObserver.js HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 05 Dec 2022 21:19:00 GMT
x-rgw-object-type: Normal
ETag: W/"e52201e96af18dd02c85eb627c843491"
x-amz-request-id: tx0000000000000001e8cc6-006417539d-d860bdd-sfo1
X-Storage-Bucket: z3974
X-Storage-Object: 397452d9f6a2ea6a2135b45c9e40139c68ac6661f3bab4413e7299586ccb408a
X-Host: blu70.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash ffe48e416e451f83878b22109c5272b1
e174921d2b163f772299b2a1fe2d98938044f8c6
66e404ced00b672e3e57d5b79a70b6f4e40a5675d62fe5a654770c1198cde661
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 May 2023 00:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
btconnect-103876btconnectmail.weebly.com/files/templateArtifacts.js?1680743243
199.34.228.54200 OK 1.6 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/templateArtifacts.js?1680743243
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type exported SGML document, ASCII text, with very long lines (1630)
Hash ae81ab7069097a055829fb9919258138
7dc529f16fb595bbbfc5937adfe1d0a5cf563f8a
5a630b41e7c3d34392bcb150a5731b6261bc6314d71d5db8407a646af15bf8af
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /files/templateArtifacts.js?1680743243 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:04 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu50.sf2p.intern.weebly.net
Content-Encoding: gzip
btconnect-103876btconnectmail.weebly.com/files/theme/custom-1.js?1667772399
199.34.228.54200 OK 4.1 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/theme/custom-1.js?1667772399
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash 214dde43cebf15418cdcc76f9677ee46
6e93acebfa271d3fce9626034d03f942d3b628a8
cfbf67a85c039719090cff2c4718de99203b1ced78cfb8fae5f7240d2f1570b7
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /files/theme/custom-1.js?1667772399 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 26 Oct 2021 13:57:32 GMT
x-rgw-object-type: Normal
ETag: W/"214dde43cebf15418cdcc76f9677ee46"
x-amz-request-id: tx000000000000001d0dce1-0061a7e2f5-a9f1b25-sfo1
X-Storage-Bucket: zcfbf
X-Storage-Object: cfbf67a85c039719090cff2c4718de99203b1ced78cfb8fae5f7240d2f1570b7
X-Host: blu77.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash ffe48e416e451f83878b22109c5272b1
e174921d2b163f772299b2a1fe2d98938044f8c6
66e404ced00b672e3e57d5b79a70b6f4e40a5675d62fe5a654770c1198cde661
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 May 2023 00:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
151.101.2.133 1.5 kB URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 151.101.2.133:0
Hash 05598a8bedafe3fb556c40f4bc2b6494
d1ba89a24753b772c23e1eb9a8909eddc1a719f9
06d6ee3d6c6413ccfc525602bd6bcc6207d393a197268687a1bb1d3ea06281fc
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1462
Content-Type: application/ocsp-response
Etag: "3B1CD6FFD0F2A1C7F3215CE47DA1ABEEEF0878F9"
Expires: Wed, 31 May 2023 12:00:00 UTC
Last-Modified: Wed, 31 May 2023 00:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
Accept-Ranges: bytes
Date: Wed, 31 May 2023 00:24:05 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1667-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1685492645.971677,VS0,VE93
btconnect-103876btconnectmail.weebly.com/files/main_style.css?1680743243
199.34.228.54200 OK 7.2 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/main_style.css?1680743243
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type assembler source, ASCII text, with very long lines (815)
Hash a0e28bf58e47fcd625be7a10364ecca1
40790ea44e6c51b5523ef54b44b36f3f8881a344
59b98d99063d1eb6d1b8bb51e0d6491dea680f748c77e95b9d726e4663fa1dd4
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /files/main_style.css?1680743243 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu41.sf2p.intern.weebly.net
Content-Encoding: gzip
btconnect-103876btconnectmail.weebly.com/files/theme/plugins.js?1667772399
199.34.228.54200 OK 16 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/theme/plugins.js?1667772399
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash 2b8d85f1ea01d2c3e8b962eac8d76a5c
936987a7e08daa4a916c77d86937edee42d657da
b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /files/theme/plugins.js?1667772399 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001b6b5e9-0062847b2f-b9fbc63-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: blu74.sf2p.intern.weebly.net
Content-Encoding: gzip
btconnect-103876btconnectmail.weebly.com/files/theme/jquery.revealer.js?1667772399
199.34.228.54200 OK 2.8 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/theme/jquery.revealer.js?1667772399
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash c22ab67199a33d876512504cda4ff55b
36e96eae4644b6028532974fe5186a072792cb37
c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
GET /files/theme/jquery.revealer.js?1667772399 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: application/javascript
Content-Length: 2828
Connection: keep-alive
Last-Modified: Tue, 26 Oct 2021 13:57:33 GMT
x-rgw-object-type: Normal
ETag: "c22ab67199a33d876512504cda4ff55b"
x-amz-request-id: tx000000000000000e9fd29-0061a727a5-a9f41e7-sfo1
X-Storage-Bucket: zc4cd
X-Storage-Object: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
X-Host: blu74.sf2p.intern.weebly.net
Accept-Ranges: bytes
btconnect-103876btconnectmail.weebly.com/files/theme/jquery.trend.js?1667772399
199.34.228.54200 OK 3.8 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/theme/jquery.trend.js?1667772399
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash 4beccebe0a060b2b2c43de5c2d4512ef
250a779dd017877b9f360b264cf072d9e87974ff
446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
GET /files/theme/jquery.trend.js?1667772399 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: application/javascript
Content-Length: 3775
Connection: keep-alive
Last-Modified: Thu, 10 Feb 2022 08:22:06 GMT
x-rgw-object-type: Normal
ETag: "4beccebe0a060b2b2c43de5c2d4512ef"
x-amz-request-id: tx000000000000001b11728-0062847b79-b9fbc20-sfo1
X-Storage-Bucket: z446f
X-Storage-Object: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
X-Host: grn25.sf2p.intern.weebly.net
Accept-Ranges: bytes
btconnect-103876btconnectmail.weebly.com/files/theme/jquery.pxuMenu.js?1667772399
199.34.228.54200 OK 3.7 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/theme/jquery.pxuMenu.js?1667772399
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type HTML document, ASCII text
Hash ac373d716afe4270df40f60417b0f418
aba148148c771bb66b0b4aeab6eac8eb40352745
f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /files/theme/jquery.pxuMenu.js?1667772399 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: application/javascript
Content-Length: 3697
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 13:50:18 GMT
x-rgw-object-type: Normal
ETag: "ac373d716afe4270df40f60417b0f418"
x-amz-request-id: tx000000000000001d78029-0062849c00-b9fbc63-sfo1
X-Storage-Bucket: zf755
X-Storage-Object: f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
X-Host: blu154.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/fonts/Roboto_Mono/regular.woff2
151.101.1.46200 OK 12 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Roboto_Mono/regular.woff2
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type Web Open Font Format (Version 2), TrueType, length 12312, version 1.0\012- data
Hash 15d3370712cc87aee4d35ba16e639e42
2fd44d7078073a47d4ab29418e1909b306367033
7295944e0067d71c5d5276d397dc0299afb519f277ba644aec0b96343e4185d1
GET /fonts/Roboto_Mono/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-103876btconnectmail.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 12312
server: nginx
content-type: font/woff2
last-modified: Mon, 22 May 2023 17:52:32 GMT
etag: "646babe0-3018"
expires: Tue, 06 Jun 2023 08:41:39 GMT
cache-control: max-age=1209600
x-host: grn129.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:05 GMT
age: 661346
x-served-by: cache-sjc10077-SJC, cache-bma1675-BMA
x-cache: HIT, HIT
x-cache-hits: 12, 1
x-timer: S1685492645.249153,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Karla/bold.woff2
151.101.1.46200 OK 11 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Karla/bold.woff2
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type Web Open Font Format (Version 2), TrueType, length 11384, version 1.0\012- data
Hash feb6c980c7d633c192a19b13047270b8
9ca9a681147d49ad3ba857e740d2a335e6f61812
8749b48067af37c72625416cc5da9fdde06df26bff1f471461dec1bbdaf43f78
GET /fonts/Karla/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://btconnect-103876btconnectmail.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 11384
server: nginx
content-type: font/woff2
last-modified: Thu, 18 May 2023 18:15:55 GMT
etag: "64666b5b-2c78"
expires: Fri, 02 Jun 2023 09:17:26 GMT
cache-control: max-age=1209600
x-host: blu47.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:05 GMT
age: 1004799
x-served-by: cache-sjc10056-SJC, cache-bma1675-BMA
x-cache: HIT, HIT
x-cache-hits: 38, 1
x-timer: S1685492645.249154,VS0,VE13
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
btconnect-103876btconnectmail.weebly.com/uploads/1/4/3/7/143765284/down-aol-yahoo-and-all_orig.png
199.34.228.54200 OK 4.8 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/uploads/1/4/3/7/143765284/down-aol-yahoo-and-all_orig.png
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 259 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a57e8e9030bfe4551c75f58e87da61e
742d6916a573f06fb5df69a236db25fb647462b5
edd8b0668c9caae8e29d5680f045e4fbf7f4d6afa1adc4cf8366fa45c716ddcb
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /uploads/1/4/3/7/143765284/down-aol-yahoo-and-all_orig.png HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: image/png
Content-Length: 4783
Connection: keep-alive
Last-Modified: Tue, 12 Oct 2021 23:49:28 GMT
x-rgw-object-type: Normal
ETag: "7a57e8e9030bfe4551c75f58e87da61e"
x-amz-request-id: tx000000000000070d00a58-0063e284f3-c695612-sfo1
X-Storage-Bucket: zedd8
X-Storage-Object: edd8b0668c9caae8e29d5680f045e4fbf7f4d6afa1adc4cf8366fa45c716ddcb
X-Host: grn143.sf2p.intern.weebly.net
Accept-Ranges: bytes
btconnect-103876btconnectmail.weebly.com/files/theme/images/arrow-light.svg?1680743243
199.34.228.54200 OK 886 B URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/files/theme/images/arrow-light.svg?1680743243
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 552eb2e04260fc0733e5633d15c6aeaa
0a9efcc3b0ebabb23a49a00061fd8200eded1613
705ff3240de004523ff9d628b28aad705ad3f0ceb046312495265a4042c67570
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /files/theme/images/arrow-light.svg?1680743243 HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/files/main_style.css?1680743243
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: image/svg+xml; charset=us-ascii
Content-Length: 886
Connection: keep-alive
Last-Modified: Sat, 19 Mar 2022 04:38:52 GMT
x-rgw-object-type: Normal
ETag: "552eb2e04260fc0733e5633d15c6aeaa"
x-amz-request-id: tx000000000000001c90865-006284965b-b9fbc77-sfo1
X-Storage-Bucket: z705f
X-Storage-Object: 705ff3240de004523ff9d628b28aad705ad3f0ceb046312495265a4042c67570
Content-Disposition: attachment
X-Host: blu77.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.1.46200 OK 26 kB URL GET HTTP/3 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (2512)
Hash 99bbe560926e583b8e99036251deb783
8d81b73ae06f664f9d9e53dd5829a799bf434491
648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25752
server: nginx
content-type: application/javascript
last-modified: Wed, 24 May 2023 18:54:37 GMT
etag: "646e5d6d-124fe"
expires: Thu, 08 Jun 2023 08:49:33 GMT
cache-control: max-age=1209600
x-host: blu84.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:05 GMT
age: 488072
x-served-by: cache-sjc10061-SJC, cache-bma1673-BMA
x-cache: HIT, HIT
x-cache-hits: 27, 5059
x-timer: S1685492645.396926,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1685489145
151.101.1.46200 OK 886 B URL GET HTTP/3 cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1685489145
IP 151.101.1.46:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (2632)
Hash b09e83d2aeac55c0d3b67186cd5009ff
fa87cec84cc36fc2e70804867da24578ea331999
251a983a1b4b2cc76542aa398ae6b3499978a788860b54a8081d35d7a843303c
GET /css/free-footer-v3.css?buildtime=1685489145 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 886
server: nginx
content-type: text/css
last-modified: Tue, 30 May 2023 22:37:28 GMT
etag: "64767aa8-a49"
expires: Tue, 13 Jun 2023 23:28:07 GMT
cache-control: max-age=1209600
x-host: grn150.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 May 2023 00:24:05 GMT
age: 3358
x-served-by: cache-sjc10035-SJC, cache-bma1673-BMA
x-cache: HIT, HIT
x-cache-hits: 68, 1
x-timer: S1685492645.448469,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash fc90a5f503b6cb25a7b631a1a965f7ff
6734e3ee58b1578ea20ce59b1b119eed737eae9f
a995d790b06fe4e5a8a502e378651d543ae216e7831827350868630f8381376e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 May 2023 00:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?_=1685492645036
142.250.74.132200 OK 556 B URL GET HTTP/2 www.google.com/recaptcha/api.js?_=1685492645036
IP 142.250.74.132:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint48:E3:15:66:FC:EA:15:BF:D2:34:C1:DD:60:D4:23:A3:63:57:89:8D
ValidityMon, 08 May 2023 08:25:18 GMT - Mon, 31 Jul 2023 08:25:17 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash df783ce1aff114831a54f9f75f41f66c
33148dcdac51d1a72787969900203bc0316ff82f
f75b96abf98a7f4874b54f268b85ba2b2fa261741afa891097537bcfa1e73fd3
GET /recaptcha/api.js?_=1685492645036 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Wed, 31 May 2023 00:24:05 GMT
date: Wed, 31 May 2023 00:24:05 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ae04971c528c0cd1388ac3e69999c24e
4536731637389de6ab5cb7391f4fa155db18993e
3efde8f665ec12eac8757ad23019ad9ef498ff18690921b94f8e6cde7d020c07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 May 2023 00:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
btconnect-103876btconnectmail.weebly.com/uploads/1/4/3/7/143765284/background-images/299107413.jpg
199.34.228.54200 OK 74 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/uploads/1/4/3/7/143765284/background-images/299107413.jpg
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x900, components 3\012- data
Hash 28eaacc509734400e5d0342a39352bd9
df9acbeedc56a163e842de4589dd629b78d971ea
d6d3224d45f286e4570240ff243de497da4ec742f6edb886727108f8dd64e637
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /uploads/1/4/3/7/143765284/background-images/299107413.jpg HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: image/jpeg
Content-Length: 74265
Connection: keep-alive
Last-Modified: Sun, 31 Oct 2021 21:07:31 GMT
x-rgw-object-type: Normal
ETag: "28eaacc509734400e5d0342a39352bd9"
x-amz-request-id: tx00000000000002046ef6f-0063560de5-c699baa-sfo1
X-Storage-Bucket: zd6d3
X-Storage-Object: d6d3224d45f286e4570240ff243de497da4ec742f6edb886727108f8dd64e637
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash b4b40aa902e030c3962325bfbc1aa3a4
a4ba1f4ef41182df919a3d52c5b453880c43a45f
db2652de35ec8788a924075eadc88c711e2f245d8165ff00c726461b83d114a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 May 2023 00:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
btconnect-103876btconnectmail.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.54200 OK 348 B URL POST HTTP/1.1 btconnect-103876btconnectmail.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://btconnect-103876btconnectmail.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 May 2023 00:24:05 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn72.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://btconnect-103876btconnectmail.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 May 2023 23:49:29 GMT
expires: Tue, 28 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
age: 88476
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash b4b40aa902e030c3962325bfbc1aa3a4
a4ba1f4ef41182df919a3d52c5b453880c43a45f
db2652de35ec8788a924075eadc88c711e2f245d8165ff00c726461b83d114a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 May 2023 00:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
btconnect-103876btconnectmail.weebly.com/favicon.ico
199.34.228.54200 OK 4.3 kB URL GET HTTP/1.1 btconnect-103876btconnectmail.weebly.com/favicon.ico
IP 199.34.228.54:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
Analyzer Verdict Alert openphish BT Group plc
phishtank British Telecom
GET /favicon.ico HTTP/1.1
Host: btconnect-103876btconnectmail.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 May 2023 00:24:05 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000000c7f3c4-0061a705d8-a9f6a62-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: blu74.sf2p.intern.weebly.net
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Karla:400,700|Oswald:700|Roboto+Mono:400,400i,700,700i
216.58.207.202200 OK 12 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Karla:400,700|Oswald:700|Roboto+Mono:400,400i,700,700i
IP 216.58.207.202:443
Requested by https://btconnect-103876btconnectmail.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash ca9a753c37a910618c99a6703c5f2937
bb495ec576a0471f5134773cc0106beecc9bfb56
667f303d0dbd9aae6a37a0472ae949633e35af6696448eccf63a2ee2e6a5c50b
GET /css?family=Karla:400,700|Oswald:700|Roboto+Mono:400,400i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://btconnect-103876btconnectmail.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 May 2023 00:24:04 GMT
date: Wed, 31 May 2023 00:24:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2