attserverinsemailfejhbdsfwdg.weebly.com/
199.34.228.54200 OK 6.0 kB URL User Request GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/
IP 199.34.228.54:443
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (861), with CRLF, LF line terminators
Hash 450b7d2518f5bc7154fbb7ffac63e4bb
be8ccfb96d8a3901d51d8b130f800bdf06daa61c
db63addffe05d0e4e727361bd23f77c446800a72f7210b10a663ae9a6a3d8c2f
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET / HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Oct 2023 11:23:34 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=attserverinsemailfejhbdsfwdg.weebly.com
language=en; expires=Fri, 10-Nov-2023 11:23:34 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"450b7d2518f5bc7154fbb7ffac63e4bb-gzip"
Content-Encoding: gzip
X-Host: blu99.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 5977
Keep-Alive: timeout=10, max=62
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
151.101.193.46200 OK 9.7 kB URL GET HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Hash 6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduBRDjRVf4aujFpQt8U1R0AZRrT0tvE8fm-z8w_U2xex-GMjAJYQnABttdWeDPxN6Xmm0qeYmzq9wQe4BBub96qvpXffxjW
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 01 Sep 2023 02:23:15 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
via: 1.1 varnish
age: 204715
x-served-by: cache-bma1681-BMA
x-cache: HIT
x-cache-hits: 887
x-timer: S1698405815.847235,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1647470364
151.101.193.46200 OK 1.2 kB URL GET HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1647470364
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (3910)
Hash 1dcebbb5a1eb8b028310ceeb72a339b3
e254b7a35ac189fd1ce9cf8bd78593bebfe27d7d
865cb87de9fc4d6530edce21f0103107abae6abe45cabdff2ad9af067b3d8e0a
GET /css/old/fancybox.css?1647470364 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 17 Oct 2023 22:03:22 GMT
etag: "652f04aa-f47"
expires: Wed, 01 Nov 2023 16:03:50 GMT
cache-control: max-age=1209600
x-host: grn152.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
age: 760784
x-served-by: cache-sjc1000098-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 518, 1
x-timer: S1698405815.847213,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1647470364
151.101.193.46200 OK 1.6 kB URL GET HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1647470364
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (13080)
Hash d9479216977af349a3074ca27b3461b3
ad2ff13ecd31e6c0442de08407f3a3869075fbc9
e1f0c8f9d8c00a239fd07abbf9ea41e8c142db77fcc8b2167ae8cf30b1def359
GET /css/social-icons.css?buildtime=1647470364 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 18 Oct 2023 20:03:49 GMT
etag: W/"65303a25-3319"
expires: Thu, 02 Nov 2023 02:26:45 GMT
cache-control: max-age=1209600
x-host: grn67.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
age: 723409
x-served-by: cache-sjc10082-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 44, 1
x-timer: S1698405815.847190,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1640
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1647470364
151.101.193.46200 OK 30 kB URL GET HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1647470364
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 251fe9dd065a30efd11ccab9a9613cda
9c8bec2886368f245985ae92222349ba92ac07f7
5b6bd64c8f7d37dd7bd34e3760cfffa93a982937376e2c02708f63c35c645a07
GET /css/sites.css?buildTime=1647470364 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 23 Oct 2023 22:31:14 GMT
etag: W/"6536f432-337f6"
expires: Tue, 07 Nov 2023 14:54:07 GMT
cache-control: max-age=1209600
x-host: blu22.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
age: 246567
x-served-by: cache-sjc1000103-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 67, 1
x-timer: S1698405815.847286,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29663
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1698343843
151.101.193.46200 OK 1.4 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1698343843
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (3600), with no line terminators
Hash 40b81b2d52ba9d2e2c64c31ff6a24cd7
6b5689250661646ecbb841f2475f1556a113373c
e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96
GET /js/site/footerSignup.js?buildTime=1698343843 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 26 Oct 2023 17:34:51 GMT
etag: "653aa33b-e10"
expires: Thu, 09 Nov 2023 18:13:01 GMT
cache-control: max-age=1209600
x-host: blu96.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
age: 61834
x-served-by: cache-sjc10033-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 146
x-timer: S1698405815.849621,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 7e2768f801fb06f29501d0e86ab0c63a
d60b99ecccc374278489937e20bda1ce9b4c1c7d
f6986fdec0e0720c4630d79c3a063cf9f7365a21d916f7ff85cebac555a1940f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1647470364
151.101.193.46200 OK 159 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1647470364
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (32029)
Size 159 kB (159104 bytes)
Hash 477945f3201c7b0c701a23b373cadb2a
ac7582e7ab946ce51cb94431cb026ebe6dbce9c2
207ec261a8530654204ada78a03b0cc6c129c09bac87013c3a8bb3bedfe84be6
GET /js/site/main-customer-accounts-site.js?buildTime=1647470364 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 16 Oct 2023 21:44:01 GMT
etag: "652daea1-826d7"
expires: Tue, 31 Oct 2023 15:51:22 GMT
cache-control: max-age=1209600
x-host: blu72.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
age: 847932
x-served-by: cache-sjc1000105-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 35, 1
x-timer: S1698405815.847260,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159104
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1647470364&
151.101.193.46200 OK 33 kB URL GET HTTP/3 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1647470364&
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65024)
Hash cf9326df57f8fac4a5eb60e96f429d0f
8e0e2f58ecd156bd1e6d180c9120746f8e646882
9f17849278ea3971ca67fe008881f2e042351b3b0f279c38efde4f4b02ab8f75
GET /js/lang/en/stl.js?buildTime=1647470364& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 13 Oct 2023 23:11:42 GMT
etag: "6529ceae-2c7eb"
expires: Sun, 29 Oct 2023 08:15:01 GMT
cache-control: max-age=1209600
x-host: grn11.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
age: 1048113
x-served-by: cache-sjc1000133-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 381, 1
x-timer: S1698405815.853267,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33051
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1647470364
151.101.193.46200 OK 146 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1647470364
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (32147)
Size 146 kB (146401 bytes)
Hash 0de029f7ed3fd4cbfdcef31b834138e3
224512b5c840e885cd0732822af53301681ec799
593fec175b00a1f118f77bb8ed378e857e9f1225f0fc019fcea508b27da53cf0
GET /js/site/main.js?buildTime=1647470364 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 13 Oct 2023 23:13:26 GMT
etag: "6529cf16-74804"
expires: Sun, 29 Oct 2023 16:27:49 GMT
cache-control: max-age=1209600
x-host: grn126.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:34 GMT
age: 1018545
x-served-by: cache-sjc10044-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 38, 1
x-timer: S1698405815.850534,VS0,VE8
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146401
X-Firefox-Spdy: h2
attserverinsemailfejhbdsfwdg.weebly.com/files/theme/MutationObserver.js
199.34.228.54200 OK 6.8 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/theme/MutationObserver.js
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash e52201e96af18dd02c85eb627c843491
5bcdd1480b9bebcddb0d82083bdf03a7435d59a1
397452d9f6a2ea6a2135b45c9e40139c68ac6661f3bab4413e7299586ccb408a
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /files/theme/MutationObserver.js HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 05 Dec 2022 21:19:00 GMT
x-rgw-object-type: Normal
ETag: W/"e52201e96af18dd02c85eb627c843491"
x-amz-request-id: tx0000000000000001e8cc6-006417539d-d860bdd-sfo1
X-Storage-Bucket: z3974
X-Storage-Object: 397452d9f6a2ea6a2135b45c9e40139c68ac6661f3bab4413e7299586ccb408a
X-Host: grn79.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 7e2768f801fb06f29501d0e86ab0c63a
d60b99ecccc374278489937e20bda1ce9b4c1c7d
f6986fdec0e0720c4630d79c3a063cf9f7365a21d916f7ff85cebac555a1940f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 7e2768f801fb06f29501d0e86ab0c63a
d60b99ecccc374278489937e20bda1ce9b4c1c7d
f6986fdec0e0720c4630d79c3a063cf9f7365a21d916f7ff85cebac555a1940f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 7e2768f801fb06f29501d0e86ab0c63a
d60b99ecccc374278489937e20bda1ce9b4c1c7d
f6986fdec0e0720c4630d79c3a063cf9f7365a21d916f7ff85cebac555a1940f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
attserverinsemailfejhbdsfwdg.weebly.com/files/main_style.css?1647626661
199.34.228.54200 OK 7.2 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/main_style.css?1647626661
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type assembler source, ASCII text, with very long lines (815)
Hash 6ec8ad812a977cbc9a8a96fd1655de55
bb955a2298d888474b6deeeef4cd2118f5a9324a
1897da8c35df8c10cdc6be226a739cd6e5e284c212d9c881bde7bdde51521319
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /files/main_style.css?1647626661 HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu136.sf2p.intern.weebly.net
Content-Encoding: gzip
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.106200 OK 34 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.106:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT
File type ASCII text, with very long lines (65483)
Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7
06e872300088b9ba8a08427d28ed0efcdf9c6ff5
61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 10:31:11 GMT
expires: Sat, 26 Oct 2024 10:31:11 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 3144
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
attserverinsemailfejhbdsfwdg.weebly.com/uploads/1/4/1/1/141162779/screenshot-2021-06-01-login-screen-3_orig.png
199.34.228.54200 OK 2.5 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/uploads/1/4/1/1/141162779/screenshot-2021-06-01-login-screen-3_orig.png
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 405 x 164, 8-bit colormap, non-interlaced\012- data
Hash 1aef1f4319b7e3e59b4655a7114e1840
90fc6ab9de26069ed0f66315b310d12ff190da2c
fc5f5fb45513f7be56f3fd4ad9179a39817f07dbbad63ed28c7dc8d7dd3991ea
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /uploads/1/4/1/1/141162779/screenshot-2021-06-01-login-screen-3_orig.png HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: image/png
Content-Length: 2489
Connection: keep-alive
Last-Modified: Tue, 01 Jun 2021 14:45:42 GMT
x-rgw-object-type: Normal
ETag: "1aef1f4319b7e3e59b4655a7114e1840"
x-amz-request-id: tx00000b173b8fe83207846-00653afe16-db1c67d-sfo1
X-Storage-Bucket: zfc5f
X-Storage-Object: fc5f5fb45513f7be56f3fd4ad9179a39817f07dbbad63ed28c7dc8d7dd3991ea
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Karla:400,700|Oswald:700|Roboto+Mono:400,400i,700,700i
142.250.74.106200 OK 1.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Karla:400,700|Oswald:700|Roboto+Mono:400,400i,700,700i
IP 142.250.74.106:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT
File type gzip compressed data, max compression\012- data
Hash 5e31afe07a18cd037c003dcc10187a2b
4eb07fa9dc6f620063be26e4067345625b3a7ffc
402b826ddf7c58a32a891ebf2f66df789b513999e8e1db684c9defa6f69f9f13
GET /css?family=Karla:400,700|Oswald:700|Roboto+Mono:400,400i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Oct 2023 11:23:35 GMT
date: Fri, 27 Oct 2023 11:23:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Karla:400,700,400italic,700italic&subset=latin,latin-ext
142.250.74.106200 OK 953 B URL GET HTTP/2 fonts.googleapis.com/css?family=Karla:400,700,400italic,700italic&subset=latin,latin-ext
IP 142.250.74.106:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT
File type gzip compressed data, max compression\012- data
Hash a3a4761fe22356ae2cfc73da2d1278f9
724fce119752dc7e3c4622c6feed1b128c7f32c9
927aa791912953e96089b78ca23581b8f2ba25dbfd04b55d92a6212797ac9ad4
GET /css?family=Karla:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Oct 2023 11:23:35 GMT
date: Fri, 27 Oct 2023 11:23:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
attserverinsemailfejhbdsfwdg.weebly.com/files/theme/jquery.pxuMenu.js?1647626054
199.34.228.54200 OK 3.7 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/theme/jquery.pxuMenu.js?1647626054
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type HTML document, ASCII text
Hash ac373d716afe4270df40f60417b0f418
aba148148c771bb66b0b4aeab6eac8eb40352745
f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /files/theme/jquery.pxuMenu.js?1647626054 HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: application/javascript
Content-Length: 3697
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 13:50:18 GMT
x-rgw-object-type: Normal
ETag: "ac373d716afe4270df40f60417b0f418"
x-amz-request-id: tx000000000000001d78029-0062849c00-b9fbc63-sfo1
X-Storage-Bucket: zf755
X-Storage-Object: f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
X-Host: blu146.sf2p.intern.weebly.net
Accept-Ranges: bytes
attserverinsemailfejhbdsfwdg.weebly.com/files/theme/plugins.js?1647626054
199.34.228.54200 OK 16 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/theme/plugins.js?1647626054
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash 2b8d85f1ea01d2c3e8b962eac8d76a5c
936987a7e08daa4a916c77d86937edee42d657da
b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
GET /files/theme/plugins.js?1647626054 HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001ae94c4-006284793b-b9fbc20-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: blu83.sf2p.intern.weebly.net
Content-Encoding: gzip
attserverinsemailfejhbdsfwdg.weebly.com/files/theme/jquery.revealer.js?1647626054
199.34.228.54200 OK 2.8 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/theme/jquery.revealer.js?1647626054
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash c22ab67199a33d876512504cda4ff55b
36e96eae4644b6028532974fe5186a072792cb37
c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /files/theme/jquery.revealer.js?1647626054 HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: application/javascript
Content-Length: 2828
Connection: keep-alive
Last-Modified: Tue, 26 Oct 2021 13:57:33 GMT
x-rgw-object-type: Normal
ETag: "c22ab67199a33d876512504cda4ff55b"
x-amz-request-id: tx000000000000001e5af42-006284ac15-b9fbc64-sfo1
X-Storage-Bucket: zc4cd
X-Storage-Object: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
X-Host: grn146.sf2p.intern.weebly.net
Accept-Ranges: bytes
attserverinsemailfejhbdsfwdg.weebly.com/files/theme/jquery.trend.js?1647626054
199.34.228.54200 OK 3.8 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/theme/jquery.trend.js?1647626054
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash 4beccebe0a060b2b2c43de5c2d4512ef
250a779dd017877b9f360b264cf072d9e87974ff
446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /files/theme/jquery.trend.js?1647626054 HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: application/javascript
Content-Length: 3775
Connection: keep-alive
Last-Modified: Thu, 10 Feb 2022 08:22:06 GMT
x-rgw-object-type: Normal
ETag: "4beccebe0a060b2b2c43de5c2d4512ef"
x-amz-request-id: tx000000000000001ed57e3-006284b3ea-b9fbc64-sfo1
X-Storage-Bucket: z446f
X-Storage-Object: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
X-Host: grn47.sf2p.intern.weebly.net
Accept-Ranges: bytes
attserverinsemailfejhbdsfwdg.weebly.com/files/theme/custom-1.js?1647626054
199.34.228.54200 OK 4.1 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/theme/custom-1.js?1647626054
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash 214dde43cebf15418cdcc76f9677ee46
6e93acebfa271d3fce9626034d03f942d3b628a8
cfbf67a85c039719090cff2c4718de99203b1ced78cfb8fae5f7240d2f1570b7
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /files/theme/custom-1.js?1647626054 HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 26 Oct 2021 13:57:32 GMT
x-rgw-object-type: Normal
ETag: W/"214dde43cebf15418cdcc76f9677ee46"
x-amz-request-id: tx000000000000002006e8c-006284c6d5-b9fbc63-sfo1
X-Storage-Bucket: zcfbf
X-Storage-Object: cfbf67a85c039719090cff2c4718de99203b1ced78cfb8fae5f7240d2f1570b7
X-Host: blu146.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1647470364&
151.101.193.46200 OK 33 kB URL GET HTTP/3 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1647470364&
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (65024)
Hash cf9326df57f8fac4a5eb60e96f429d0f
8e0e2f58ecd156bd1e6d180c9120746f8e646882
9f17849278ea3971ca67fe008881f2e042351b3b0f279c38efde4f4b02ab8f75
GET /js/lang/en/stl.js?buildTime=1647470364& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 33051
server: nginx
content-type: application/javascript
last-modified: Fri, 13 Oct 2023 23:11:42 GMT
etag: "6529ceae-2c7eb"
expires: Sun, 29 Oct 2023 08:15:01 GMT
cache-control: max-age=1209600
x-host: grn11.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:35 GMT
age: 1048114
x-served-by: cache-sjc1000133-SJC, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 381, 1
x-timer: S1698405816.544221,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.193.46200 OK 26 kB URL GET HTTP/3 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (2512)
Hash 99bbe560926e583b8e99036251deb783
8d81b73ae06f664f9d9e53dd5829a799bf434491
648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25752
server: nginx
content-type: application/javascript
last-modified: Wed, 25 Oct 2023 18:15:35 GMT
etag: "65395b47-124fe"
expires: Thu, 09 Nov 2023 08:49:33 GMT
cache-control: max-age=1209600
x-host: blu154.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:35 GMT
age: 95641
x-served-by: cache-sjc10061-SJC, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 43, 915
x-timer: S1698405816.713943,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 60d26d609eefb6202b60ec01b21b5dc0
a5b5789b0dd3adecd614281e1c0cbd8855ff79f1
33830b39ac6ede19d77b0caf356d9cb4122da38b2f1158a473263e69eed46165
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 60d26d609eefb6202b60ec01b21b5dc0
a5b5789b0dd3adecd614281e1c0cbd8855ff79f1
33830b39ac6ede19d77b0caf356d9cb4122da38b2f1158a473263e69eed46165
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotomono/v23/L0xTDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vrtSM1J-gEPT5Ese6hmHSh0mQ.woff2
216.58.207.227200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/robotomono/v23/L0xTDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vrtSM1J-gEPT5Ese6hmHSh0mQ.woff2
IP 216.58.207.227:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 22736, version 1.0\012- data
Hash 6030466e3ea9779f8596076c6438a7b6
77d1cbe94004d6cf224466754f43cc12b87491e8
c7dd144163721cef3b11282607dffe203646a44ac7275874c7fe09669f76ea02
GET /s/robotomono/v23/L0xTDF4xlVMF-BfR8bXMIhJHg45mwgGEFl0_3vrtSM1J-gEPT5Ese6hmHSh0mQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://attserverinsemailfejhbdsfwdg.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Oct 2023 12:47:24 GMT
expires: Sat, 19 Oct 2024 12:47:24 GMT
cache-control: public, max-age=31536000
age: 599771
last-modified: Wed, 13 Sep 2023 23:53:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 60d26d609eefb6202b60ec01b21b5dc0
a5b5789b0dd3adecd614281e1c0cbd8855ff79f1
33830b39ac6ede19d77b0caf356d9cb4122da38b2f1158a473263e69eed46165
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1698343843
151.101.193.46200 OK 886 B URL GET HTTP/3 cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1698343843
IP 151.101.193.46:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT
File type ASCII text, with very long lines (2632)
Hash b09e83d2aeac55c0d3b67186cd5009ff
fa87cec84cc36fc2e70804867da24578ea331999
251a983a1b4b2cc76542aa398ae6b3499978a788860b54a8081d35d7a843303c
GET /css/free-footer-v3.css?buildtime=1698343843 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 886
server: nginx
content-type: text/css
last-modified: Thu, 26 Oct 2023 17:34:07 GMT
etag: "653aa30f-a49"
expires: Thu, 09 Nov 2023 18:13:01 GMT
cache-control: max-age=1209600
x-host: grn19.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 27 Oct 2023 11:23:35 GMT
age: 61834
x-served-by: cache-sjc10050-SJC, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 31, 119
x-timer: S1698405816.792365,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
216.58.207.227200 OK 28 kB URL GET HTTP/2 fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
IP 216.58.207.227:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 28512, version 1.0\012- data
Hash 16cba75f4b9969077ff30bea2f494e12
71b32a3bbcc6157da9d52accf124660a3cfc66dc
241ced7f220982f5679a64cc6db34ed42cd21274508cc5814616d9efe374afde
GET /s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://attserverinsemailfejhbdsfwdg.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Oct 2023 08:31:27 GMT
expires: Tue, 22 Oct 2024 08:31:27 GMT
cache-control: public, max-age=31536000
age: 355928
last-modified: Tue, 15 Aug 2023 18:44:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/karla/v31/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2
216.58.207.227200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/karla/v31/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2
IP 216.58.207.227:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 24364, version 1.0\012- data
Hash 45abad169c69f55755dc7a3fa6d1964a
64f447983934a2db9bbb25ebc788c2f686343597
ef71f07257bf7ab1ff3b76ac3c0fa25b8686bbb26c5617c570c7528e337e48d0
GET /s/karla/v31/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://attserverinsemailfejhbdsfwdg.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Oct 2023 16:47:49 GMT
expires: Thu, 24 Oct 2024 16:47:49 GMT
cache-control: public, max-age=31536000
age: 153346
last-modified: Wed, 27 Sep 2023 15:41:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 831eaba196419876579df2a42d030b54
0f5b4bcb439ad16e18d23eda5e0ad3525a060dc8
1d41e6fa46701ceec97557057f4c3a9e6845aee8ea90903e7a8eae7d7e84dc6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 60d26d609eefb6202b60ec01b21b5dc0
a5b5789b0dd3adecd614281e1c0cbd8855ff79f1
33830b39ac6ede19d77b0caf356d9cb4122da38b2f1158a473263e69eed46165
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Oct 2023 11:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
attserverinsemailfejhbdsfwdg.weebly.com/files/theme/images/arrow-light.svg?1647626661
199.34.228.54200 OK 886 B URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/files/theme/images/arrow-light.svg?1647626661
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 552eb2e04260fc0733e5633d15c6aeaa
0a9efcc3b0ebabb23a49a00061fd8200eded1613
705ff3240de004523ff9d628b28aad705ad3f0ceb046312495265a4042c67570
GET /files/theme/images/arrow-light.svg?1647626661 HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/files/main_style.css?1647626661
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: image/svg+xml; charset=us-ascii
Content-Length: 886
Connection: keep-alive
Last-Modified: Sat, 19 Mar 2022 04:38:52 GMT
x-rgw-object-type: Normal
ETag: "552eb2e04260fc0733e5633d15c6aeaa"
x-amz-request-id: tx000000000000001c6abb0-0062848a69-b9fbc63-sfo1
X-Storage-Bucket: z705f
X-Storage-Object: 705ff3240de004523ff9d628b28aad705ad3f0ceb046312495265a4042c67570
Content-Disposition: attachment
X-Host: blu146.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.google.com/recaptcha/api.js?_=1698405816564
142.250.74.100200 OK 1.0 kB URL GET HTTP/2 www.google.com/recaptcha/api.js?_=1698405816564
IP 142.250.74.100:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint13:D2:E3:B0:25:78:80:D7:35:78:09:81:0D:21:CE:31:CB:EF:DA:75
ValidityMon, 09 Oct 2023 08:11:26 GMT - Mon, 01 Jan 2024 08:11:25 GMT
File type gzip compressed data\012- data
Hash 34aa4d3293996e15d60aa7500ef9bacf
c57985fadf8fbbced2e119f27cf0939333a2a434
61475f87fce26b64e8b4c4d156cd4d2047638e77acd798169a5b7396c5ba9a76
GET /recaptcha/api.js?_=1698405816564 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Fri, 27 Oct 2023 11:23:35 GMT
date: Fri, 27 Oct 2023 11:23:35 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js
142.250.74.99200 OK 189 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js
IP 142.250.74.99:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT
File type ASCII text, with very long lines (689)
Size 189 kB (188860 bytes)
Hash 4efc45f285352a5b252b651160e1ced9
c7ba19e7058ec22c8d0f7283ab6b722bb7a135d7
253627a82794506a7d660ee232c06a88d2eaafb6174532f8c390bb69ade6636a
GET /recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://attserverinsemailfejhbdsfwdg.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 188860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 20:56:42 GMT
expires: Fri, 25 Oct 2024 20:56:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2023 04:01:46 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 52013
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
attserverinsemailfejhbdsfwdg.weebly.com/favicon.ico
199.34.228.54200 OK 4.3 kB URL GET HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/favicon.ico
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
Analyzer Verdict Alert OpenPhish phishing AT&T Inc.
GET /favicon.ico HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Oct 2023 11:23:35 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001aecdb2-00628475f6-b9fbc64-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn142.sf2p.intern.weebly.net
Accept-Ranges: bytes
attserverinsemailfejhbdsfwdg.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.54200 OK 348 B URL POST HTTP/1.1 attserverinsemailfejhbdsfwdg.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.54:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: attserverinsemailfejhbdsfwdg.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://attserverinsemailfejhbdsfwdg.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Oct 2023 11:23:35 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu44.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: application/json
fonts.googleapis.com/css?family=Oswald:400,300,700&subset=latin,latin-ext
142.250.74.106200 OK 5.0 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Oswald:400,300,700&subset=latin,latin-ext
IP 142.250.74.106:443
Requested by https://attserverinsemailfejhbdsfwdg.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT
File type ASCII text, with very long lines (5082), with no line terminators
Hash ea7ed2c0faf95d97cbe79ca49d46c1b7
2db12eacb1dd4e1749ce1e1a6ca752859a7a8d0f
25408c02dcff275a42f2dd94a442baafd28475eccb5ec1b28d58a93c6a477b2b
GET /css?family=Oswald:400,300,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attserverinsemailfejhbdsfwdg.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Oct 2023 11:23:35 GMT
date: Fri, 27 Oct 2023 11:23:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2