199.34.228.54200 OK 346 B URL User Request GET HTTP/1.1 IP 199.34.228.54:443
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 57c91c636a5a12e3d25546c7375f534b
4b34bf229b68fc77ca668e590abef1856501b068
380ffa77f060a13607e99fe6e6a7ff66c126e7ca671b4545f9ace39230a904c1
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET / HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 25 Apr 2023 06:40:05 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=bt10t.weebly.com
Vary: X-W-SSL,User-Agent
Location: https://bt10t.weebly.com/
X-Host: blu50.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 346
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
199.34.228.54200 OK 5.6 kB URL User Request GET HTTP/1.1 IP 199.34.228.54:443
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (887), with CRLF, LF line terminators
Hash 9d943f9de7a01d7c011cad9e9eb9a780
02b837872a31a5c40ad15747c23cd94df79457da
f76004c50734ab61ffb67eeae6ab4e60c2a592a7dcf9c1ff035765f68695880a
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET / HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: is_mobile=0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 06:40:05 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: language=en; expires=Tue, 09-May-2023 06:40:06 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"c2d7619dfa94dbd5c9c37a619b32c82b-gzip"
Content-Encoding: gzip
X-Host: blu145.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 5642
Keep-Alive: timeout=10, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/css/sites.css?buildTime=1680733730
151.101.193.46200 OK 30 kB URL GET HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1680733730
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1680733730 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 19 Apr 2023 19:26:19 GMT
etag: W/"6440405b-347ac"
expires: Wed, 03 May 2023 22:31:25 GMT
cache-control: max-age=1209600
x-host: grn68.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 461321
x-served-by: cache-sjc10065-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 2489, 25
x-timer: S1682404806.443609,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
151.101.193.46200 OK 34 kB URL GET HTTP/2 cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65483)
Hash 67a5a77f65f13559b3d723829f2e0108
5e861ec7c2993abffc3591d6132c47bc7cdc3e98
ac4ffabaed7382810a3829d812e1a45c77984a1dbfaf7d172c8bc19b3cf68ca6
GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 18 Apr 2023 19:25:10 GMT
etag: "643eee96-16dc4"
expires: Tue, 02 May 2023 23:08:15 GMT
cache-control: max-age=1209600
x-host: blu26.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 545511
x-served-by: cache-sjc10032-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 51, 4470
x-timer: S1682404806.443997,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1680733730&
151.101.193.46200 OK 33 kB URL GET HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1680733730&
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65024)
Hash fe34d667cfbbaedc2bc7495790b9c019
aab106da1c0cdbe3fce29584f5440f427b534c63
155d81f76a7deb128141d509b883d9cf1397c8bc502d92e83c2c0fe6782c3eda
GET /js/lang/en/stl.js?buildTime=1680733730& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 19 Apr 2023 19:25:00 GMT
etag: "6440400c-2c7eb"
expires: Wed, 03 May 2023 22:31:24 GMT
cache-control: max-age=1209600
x-host: grn96.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 461321
x-served-by: cache-sjc10079-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 117, 10
x-timer: S1682404806.444564,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33051
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1234&
151.101.193.46200 OK 33 kB URL GET HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1234&
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (65024)
Hash fe34d667cfbbaedc2bc7495790b9c019
aab106da1c0cdbe3fce29584f5440f427b534c63
155d81f76a7deb128141d509b883d9cf1397c8bc502d92e83c2c0fe6782c3eda
GET /js/lang/en/stl.js?buildTime=1234& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 20 Apr 2023 00:14:31 GMT
etag: "644083e7-2c7eb"
expires: Thu, 04 May 2023 10:46:08 GMT
cache-control: max-age=1209600
x-host: blu94.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 417238
x-served-by: cache-sjc10047-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 38, 12
x-timer: S1682404806.444649,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33051
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1682365049
151.101.193.46200 OK 1.4 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1682365049
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (3600), with no line terminators
Hash 121a5b9688d8e70ee7bb06cc79491f76
3a28220baa7d8879270c8311bed7dddefa7e43e9
181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
GET /js/site/footerSignup.js?buildTime=1682365049 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 24 Apr 2023 19:02:43 GMT
etag: "6446d253-e10"
expires: Mon, 08 May 2023 19:40:31 GMT
cache-control: max-age=1209600
x-host: blu113.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 39575
x-served-by: cache-sjc10043-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 24, 100
x-timer: S1682404806.445360,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1234
151.101.193.46200 OK 1.2 kB URL GET HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1234
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1234 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 20 Apr 2023 00:16:02 GMT
etag: "64408442-f47"
expires: Thu, 04 May 2023 03:04:19 GMT
cache-control: max-age=1209600
x-host: grn95.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 444946
x-served-by: cache-sjc10077-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 45, 25
x-timer: S1682404806.448220,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Cabin/font.css?2
151.101.193.46200 OK 323 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Cabin/font.css?2
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
Hash a24301bce1bbe677f4aadc991d839902
db06f2d3e14f643dbaa77c6097b7650d6125cbb0
84a71f637ab2408d99cf611ed40a22f921d778987133f813232778da71eadbbc
GET /fonts/Cabin/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 17 Apr 2023 12:33:12 GMT
etag: "643d3c88-6ae"
expires: Tue, 02 May 2023 12:36:08 GMT
cache-control: max-age=1209600
x-host: blu107.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 583438
x-served-by: cache-sjc10064-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 25, 2
x-timer: S1682404806.451846,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 323
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Lato/font.css?2
151.101.193.46200 OK 365 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Lato/font.css?2
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
Hash f6aec8855300407d88c732db5b97c3cf
a6a4c862f86744cbf3f5477e830c9f80ab986eaf
6f00c364d20ef3193c0b008183501117dec28fe7a538ccebdc4492f5c9b281d3
GET /fonts/Lato/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 17 Apr 2023 12:33:13 GMT
etag: "643d3c89-a0c"
expires: Tue, 02 May 2023 11:00:58 GMT
cache-control: max-age=1209600
x-host: grn137.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 589149
x-served-by: cache-sjc10040-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 48, 477
x-timer: S1682404806.451866,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 365
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Roboto/font.css?2
151.101.193.46200 OK 366 B URL GET HTTP/2 cdn2.editmysite.com/fonts/Roboto/font.css?2
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
Hash ba2db81c32601a480e96b58f590f1c0c
b78d1a152ee9c81d4aedadaf1bfbd8b05af5a1bd
0034dbc1fed209004e62d11bed894afa55df825bbc27c8357a3a1bbcd28f9e57
GET /fonts/Roboto/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 17 Apr 2023 12:33:13 GMT
etag: "643d3c89-a18"
expires: Tue, 02 May 2023 13:23:57 GMT
cache-control: max-age=1209600
x-host: blu98.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 580568
x-served-by: cache-sjc10039-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 55, 13
x-timer: S1682404806.451999,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 366
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1234
151.101.193.46200 OK 1.6 kB URL GET HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1234
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (13080)
Hash 412479025e6841401550ff5e2c589220
94ee78de136f85e57b9c22639c25be3df951f0da
60a0443020f5d30e504941b452ec2688b6e8d3c0b86286ba76d06d224c4a47a4
GET /css/social-icons.css?buildtime=1234 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 20 Apr 2023 00:15:54 GMT
etag: W/"6440843a-3319"
expires: Thu, 04 May 2023 09:52:19 GMT
cache-control: max-age=1209600
x-host: blu45.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 420467
x-served-by: cache-sjc10023-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 24, 13
x-timer: S1682404806.451866,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1640
X-Firefox-Spdy: h2
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
151.101.193.46200 OK 9.7 kB URL GET HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Hash 6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtLZbuzjKssmjL14qZ2UMML8_s_ieVOpY4WXY0H88RLLBOnpDdeVGi8y7o1e-ccDVKb2GgrG89NV4WkKXnXXdoJig
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 07 Apr 2023 00:33:59 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
via: 1.1 varnish
age: 21861
x-served-by: cache-bma1627-BMA
x-cache: HIT
x-cache-hits: 70
x-timer: S1682404806.445760,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1680733730
151.101.193.46200 OK 146 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1680733730
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1680733730 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 18 Apr 2023 19:25:57 GMT
etag: "643eeec5-74804"
expires: Wed, 03 May 2023 07:35:24 GMT
cache-control: max-age=1209600
x-host: grn61.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 515082
x-served-by: cache-sjc10071-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 9316, 1
x-timer: S1682404806.444563,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1680733730
151.101.193.46200 OK 159 kB URL GET HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1680733730
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (32007)
Size 159 kB (159033 bytes)
Hash 748a88130bfb202c7021002bc38991c2
9d7718c336ce0cf1ef21bd63ce14375508d16dbb
d45226edadb5df2e816c185a6931cb8ae65f11306c88f8ddc65890b56a1c5c49
GET /js/site/main-customer-accounts-site.js?buildTime=1680733730 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 18 Apr 2023 19:25:57 GMT
etag: "643eeec5-825c4"
expires: Wed, 03 May 2023 08:05:09 GMT
cache-control: max-age=1209600
x-host: blu69.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:06 GMT
age: 513297
x-served-by: cache-sjc10083-SJC, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 9267, 1
x-timer: S1682404806.445502,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159033
X-Firefox-Spdy: h2
bt10t.weebly.com/files/main_style.css?1680742035
199.34.228.54200 OK 6.0 kB URL GET HTTP/1.1 bt10t.weebly.com/files/main_style.css?1680742035
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (571)
Hash f4147cb2b4ac620389c1dd6c3495aeb8
294d136fa7dad922ab4c5d711912da90efbf6d53
22390df38226d034ef5c18fc36784fafc8b366a9f21d1c77ed8bea35cc1bdad4
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /files/main_style.css?1680742035 HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:06 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu14.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.20.226 1.5 kB URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.20.226:0
Hash cd80583022a6a0445def1324def3a09a
82988f58e315d51f5709eddc51ce2fd1d7149aae
f5c252122e49e0de555aff62f8f9865441c362ed8b9a03730c08efc0826f5a38
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 06:40:06 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1BA65473065D95CC3536CA4F3F55EFC44D87E56D"
Expires: Tue, 25 Apr 2023 17:00:00 GMT
Last-Modified: Tue, 25 Apr 2023 05:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3128
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7bd497ba496d0b02-OSL
bt10t.weebly.com/files/templateArtifacts.js?1680742035
199.34.228.54200 OK 1.6 kB URL GET HTTP/1.1 bt10t.weebly.com/files/templateArtifacts.js?1680742035
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /files/templateArtifacts.js?1680742035 HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:06 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn138.sf2p.intern.weebly.net
Content-Encoding: gzip
bt10t.weebly.com/files/theme/custom.js?1583952700
199.34.228.54200 OK 1.9 kB URL GET HTTP/1.1 bt10t.weebly.com/files/theme/custom.js?1583952700
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash e25a36444e7894390fb50186a82b6bb2
a2f61bba1823d9e453188392feec92ba633724f5
b817937e4098c35c260f85d7120954196bf3e9bbabe6fdcc333eba257981d0a0
GET /files/theme/custom.js?1583952700 HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 14 Sep 2021 16:03:38 GMT
x-rgw-object-type: Normal
ETag: W/"031afc1e38df9f7a75040672e5d7625c"
x-amz-request-id: tx000000000000001bddfd4-00628487b4-b9fbc20-sfo1
X-Storage-Bucket: z66ea
X-Storage-Object: 66ea3b4259912ad511fddc6e8edd1a8aa28d7f623d14fc65e746146ab568a039
X-Host: grn135.sf2p.intern.weebly.net
Content-Encoding: gzip
bt10t.weebly.com/files/theme/plugins.js?1583952700
199.34.228.54200 OK 16 kB URL GET HTTP/1.1 bt10t.weebly.com/files/theme/plugins.js?1583952700
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
Hash ce37502e9066932ae36507eff2c95a51
eac31d39f374a2a7512208477c9feabe185ab167
b23632e7cfb2ae59a9e8e6dd4427071bbb2d316ef562bf8cd8bedace4201c541
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
GET /files/theme/plugins.js?1583952700 HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 05 May 2022 18:26:31 GMT
x-rgw-object-type: Normal
ETag: W/"64497d2ab794cdb5e3c5c86cf7c5a611"
x-amz-request-id: tx000000000000001b62afc-006284804a-b9fbc20-sfo1
X-Storage-Bucket: z637b
X-Storage-Object: 637b5d2a661d0201f239a7afcd1278bf55bec7ef7ada6cc6c0485c4e45d9b702
X-Host: grn112.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/fonts/Cabin/bold.woff2
151.101.193.46200 OK 15 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Cabin/bold.woff2
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type Web Open Font Format (Version 2), TrueType, length 15168, version 1.0\012- data
Hash 1598ebfa232c5514a99a8af0405cc9a6
d81db409924496627326925cffa27d465c24de3d
45a8badf06824c87461905a8b1871fc3ca3eb5934cee490deadad743ebf99661
GET /fonts/Cabin/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt10t.weebly.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 15168
server: nginx
content-type: font/woff2
last-modified: Fri, 07 Apr 2023 18:00:17 GMT
etag: "64305a31-3b40"
expires: Tue, 25 Apr 2023 11:52:39 GMT
cache-control: max-age=1209600
x-host: grn45.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:07 GMT
age: 1190847
x-served-by: cache-sjc10037-SJC, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 7, 3
x-timer: S1682404807.181924,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Lato/regular.woff2
151.101.193.46200 OK 24 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Lato/regular.woff2
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /fonts/Lato/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt10t.weebly.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 23580
server: nginx
content-type: font/woff2
last-modified: Thu, 20 Apr 2023 16:53:49 GMT
etag: "64416e1d-5c1c"
expires: Fri, 05 May 2023 10:08:39 GMT
cache-control: max-age=1209600
x-host: grn78.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:07 GMT
age: 333088
x-served-by: cache-sjc10034-SJC, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 46, 193
x-timer: S1682404807.181949,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/fonts/Cabin/regular.woff2
151.101.193.46200 OK 16 kB URL GET HTTP/3 cdn2.editmysite.com/fonts/Cabin/regular.woff2
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type Web Open Font Format (Version 2), TrueType, length 15476, version 1.0\012- data
Hash 083f5cafe748b8ac91823b36986d7fda
0d763699e5bce633aa6adc03370b8630b87c1b31
a3d8afcbc68d3ae65312e50ce252f5eb4cb817d3fe39452bd37a76f896ab5921
GET /fonts/Cabin/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bt10t.weebly.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 15476
server: nginx
content-type: font/woff2
last-modified: Mon, 17 Apr 2023 12:33:12 GMT
etag: "643d3c88-3c74"
expires: Tue, 02 May 2023 08:21:29 GMT
cache-control: max-age=1209600
x-host: blu127.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:07 GMT
age: 598718
x-served-by: cache-sjc10051-SJC, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 465, 1
x-timer: S1682404807.181914,VS0,VE1
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.193.46200 OK 26 kB URL GET HTTP/3 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: cdn2.editmysite.com
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25752
server: nginx
content-type: application/javascript
last-modified: Wed, 12 Apr 2023 20:20:19 GMT
etag: "64371283-124fe"
expires: Thu, 27 Apr 2023 08:38:43 GMT
cache-control: max-age=1209600
x-host: grn116.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:07 GMT
age: 1029684
x-served-by: cache-sjc10061-SJC, cache-bma1648-BMA
x-cache: HIT, HIT
x-cache-hits: 6, 10805
x-timer: S1682404807.228668,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
bt10t.weebly.com/uploads/1/4/0/0/140092274/bt-down_orig.png
199.34.228.54200 OK 14 kB URL GET HTTP/1.1 bt10t.weebly.com/uploads/1/4/0/0/140092274/bt-down_orig.png
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 1338 x 175, 8-bit/color RGBA, non-interlaced DIY-Thermocam raw data\012- (Lepton 2.x), scale 0-240, spot sensor temperature 252140.484375, unit celsius, color scheme 0, calibration: offset 60415.890625, slope 14579002245120.000000\012- data
Hash 666e2f2865afc61bfa1842efde225875
6fd3c1a966b3d228564d74fdaee9e55ee9c55ec4
267f551d62718f15659710f4822184f222845686e131bb3dba1640315e08998a
Analyzer Verdict Alert openphish BT Group plc
GET /uploads/1/4/0/0/140092274/bt-down_orig.png HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:07 GMT
Content-Type: image/png
Content-Length: 14258
Connection: keep-alive
Last-Modified: Thu, 03 Jun 2021 08:58:54 GMT
x-rgw-object-type: Normal
ETag: "666e2f2865afc61bfa1842efde225875"
x-amz-request-id: tx000000000000063b06336-0063cdb6a6-c6aed46-sfo1
X-Storage-Bucket: z267f
X-Storage-Object: 267f551d62718f15659710f4822184f222845686e131bb3dba1640315e08998a
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes
bt10t.weebly.com/uploads/1/4/0/0/140092274/bt-up-full_orig.png
199.34.228.54200 OK 10 kB URL GET HTTP/1.1 bt10t.weebly.com/uploads/1/4/0/0/140092274/bt-up-full_orig.png
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 1345 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash f72e64c2bd428dd1353f1c803eeea81f
fe80df7c268196f1f3462bb7ba1d584136880bb7
1a509c803121727dc721278d27dd143cd596c5b1f3e786540b7a85b75e661444
Analyzer Verdict Alert openphish BT Group plc
GET /uploads/1/4/0/0/140092274/bt-up-full_orig.png HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:07 GMT
Content-Type: image/png
Content-Length: 10109
Connection: keep-alive
Last-Modified: Thu, 03 Jun 2021 08:56:50 GMT
x-rgw-object-type: Normal
ETag: "f72e64c2bd428dd1353f1c803eeea81f"
x-amz-request-id: tx000000000000069ba53f1-0063d65fe3-c669cc6-sfo1
X-Storage-Bucket: z1a50
X-Storage-Object: 1a509c803121727dc721278d27dd143cd596c5b1f3e786540b7a85b75e661444
X-Host: grn112.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1682365049
151.101.193.46200 OK 886 B URL GET HTTP/3 cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1682365049
IP 151.101.193.46:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGlobalSign nv-sa
Subject*.editmysite.com
FingerprintBF:3C:88:0C:39:65:9F:5F:27:5D:E6:7A:F5:4D:A4:01:2E:14:80:EE
ValidityTue, 13 Sep 2022 17:59:16 GMT - Sun, 15 Oct 2023 17:59:15 GMT
File type ASCII text, with very long lines (2632)
Hash 5c465ace654da8d0e367f91e7751ae62
f218f483eccbba5be90abf97eff819569329f8b7
0c91c8e311bc809644913a2ff023585ba587ecfc834ba3cd152544e75d422bd9
GET /css/free-footer-v3.css?buildtime=1682365049 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: cdn2.editmysite.com
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 886
server: nginx
content-type: text/css
last-modified: Mon, 24 Apr 2023 19:02:14 GMT
etag: "6446d236-a49"
expires: Mon, 08 May 2023 19:40:31 GMT
cache-control: max-age=1209600
x-host: grn133.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 25 Apr 2023 06:40:07 GMT
age: 39575
x-served-by: cache-sjc10026-SJC, cache-bma1648-BMA
x-cache: HIT, HIT
x-cache-hits: 46, 114
x-timer: S1682404807.258661,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 9d9f70d393fd5f16698fd8bf43495697
c2195076d36c99f3cfb74f0ab66b6b86c0152633
15b3d11e57ba1b71f2f528e202125d66051a2232a72b7b24d481fc6acbb2c740
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 06:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bt10t.weebly.com/uploads/1/4/0/0/140092274/background-images/1642169250.png
199.34.228.54200 OK 517 B URL GET HTTP/1.1 bt10t.weebly.com/uploads/1/4/0/0/140092274/background-images/1642169250.png
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 225 x 225, 8-bit grayscale, non-interlaced\012- data
Hash 9cebfdec4b179c5aa1e7978972cd6874
447aa48864bd09b712da2bb196d7bc444ae91923
1f4fd652e58a5d3cc4cbd66685c6e7f8154f6291db501a0ee9ea9c6eed59864f
Analyzer Verdict Alert openphish BT Group plc
GET /uploads/1/4/0/0/140092274/background-images/1642169250.png HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:07 GMT
Content-Type: image/png
Content-Length: 517
Connection: keep-alive
Last-Modified: Thu, 23 Sep 2021 22:01:08 GMT
x-rgw-object-type: Normal
ETag: "9cebfdec4b179c5aa1e7978972cd6874"
x-amz-request-id: tx000006bb6ca002c361aba-00643bcd34-d953336-sfo1
X-Storage-Bucket: z1f4f
X-Storage-Object: 1f4fd652e58a5d3cc4cbd66685c6e7f8154f6291db501a0ee9ea9c6eed59864f
X-Host: grn63.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.google.com/recaptcha/api.js?_=1682405045025
142.250.74.164200 OK 556 B URL GET HTTP/2 www.google.com/recaptcha/api.js?_=1682405045025
IP 142.250.74.164:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC3:7C:54:CD:86:09:A4:3E:2C:6D:EC:7C:FA:65:7B:3E:64:CB:10:E0
ValidityMon, 03 Apr 2023 08:25:07 GMT - Mon, 26 Jun 2023 08:25:06 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash bd22b4b01f990835aab0f4d5f1954202
35946e273c1ee85732e31b5b783f6905f489986a
6292082aba87ec0d33c9b02707bbc5789e2bbb28dae39a527d145309439b5f95
GET /recaptcha/api.js?_=1682405045025 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Tue, 25 Apr 2023 06:40:07 GMT
date: Tue, 25 Apr 2023 06:40:07 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 9835c5958b816bcc391a3142ef1b1b1a
2bf04d8b2690441e80f1e007206bbf3dd39d6d37
d04159a9fb19ae22303773517edaf29a6ebddf60419f1d093cf361344d6bf3b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 06:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bt10t.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.54200 OK 348 B URL POST HTTP/1.1 bt10t.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert openphish BT Group plc
fortinet Phishing
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://bt10t.weebly.com
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en; _snow_ses.c361=*; _snow_id.c361=be2473ba-10e3-4137-8c79-f40c326d99a3.1682405045.1.1682405045.1682405045.97e74d10-6d7c-4c55-9e66-94bee059b320
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 06:40:07 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn66.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 2ac0c516c6f8377ad172aee72f4eb8bb
13f44994b3fef3bbadba84dd76776e381e2a1ce5
b02d4a81be85312381f8c72e2b949b95454f75267934338be933464bec8b5878
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 06:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/4PnKmGB9wRHh1i04o7YUICeI/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/4PnKmGB9wRHh1i04o7YUICeI/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://bt10t.weebly.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT
File type ASCII text, with very long lines (641)
Size 167 kB (167070 bytes)
Hash 109e1354dcad59ff8d3e589dcc09299a
bc2cf564c7967a59936c2074b78e124e17439c3a
a9f34a49984f7a94c7a522a6d171e470701d34a4b630dcb7ae673e6cfaf2e5ae
GET /recaptcha/releases/4PnKmGB9wRHh1i04o7YUICeI/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bt10t.weebly.com
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 167070
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Apr 2023 09:38:03 GMT
expires: Sat, 20 Apr 2024 09:38:03 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 21 Apr 2023 01:25:41 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 334924
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 2ac0c516c6f8377ad172aee72f4eb8bb
13f44994b3fef3bbadba84dd76776e381e2a1ce5
b02d4a81be85312381f8c72e2b949b95454f75267934338be933464bec8b5878
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 06:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 528e9f058bac9623a940ebfa3d9fcd9f
e6a937b9a44a99fd3236eb3d8144915178bd1aa7
466bf6524de1df1a5cfb1c1eda93a301beb49aef05b95f1ec8ba4cda12908683
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 25 Apr 2023 06:40:07 GMT
Last-Modified: Tue, 25 Apr 2023 06:20:06 GMT
Server: ECAcc (nya/788E)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ltZZL9PmW_X6xMfCHn3Wtd4MtcpfjF2IekIII7eL6KLPEyEULDikng==
Age: 1201
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 528e9f058bac9623a940ebfa3d9fcd9f
e6a937b9a44a99fd3236eb3d8144915178bd1aa7
466bf6524de1df1a5cfb1c1eda93a301beb49aef05b95f1ec8ba4cda12908683
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170764
Date: Tue, 25 Apr 2023 06:40:07 GMT
Etag: "6447616e-1d7"
Expires: Thu, 27 Apr 2023 06:06:11 GMT
Last-Modified: Tue, 25 Apr 2023 05:13:18 GMT
Server: ECAcc (bsa/EA9A)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: A0w1B-Yx5Q6aCPKKM2buCVdIvHcWl95wEZSqKJCxd1JU1KDKjXL-Hw==
Age: 3173
bt10t.weebly.com/favicon.ico
199.34.228.54200 OK 4.3 kB URL GET HTTP/1.1 bt10t.weebly.com/favicon.ico
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
Analyzer Verdict Alert openphish BT Group plc
GET /favicon.ico HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en; _snow_ses.c361=*; _snow_id.c361=be2473ba-10e3-4137-8c79-f40c326d99a3.1682405045.1.1682405045.1682405045.97e74d10-6d7c-4c55-9e66-94bee059b320
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:07 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001b2998c-006284778e-b9fbc63-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: blu87.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
52.89.111.149200 OK 0 B URL OPTIONS HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 52.89.111.149:443
Requested by https://bt10t.weebly.com/
Certificate IssuerAmazon
Subjectec.editmysite.com
Fingerprint1E:2C:E2:9E:E8:3C:CD:84:38:EF:3D:D1:85:9F:D4:E2:9A:3F:C4:56
ValidityTue, 07 Feb 2023 00:00:00 GMT - Thu, 10 Aug 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://bt10t.weebly.com/
Origin: https://bt10t.weebly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 25 Apr 2023 06:40:08 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://bt10t.weebly.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
52.89.111.149200 OK 2 B URL OPTIONS HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 52.89.111.149:443
Requested by https://bt10t.weebly.com/
Certificate IssuerAmazon
Subjectec.editmysite.com
Fingerprint1E:2C:E2:9E:E8:3C:CD:84:38:EF:3D:D1:85:9F:D4:E2:9A:3F:C4:56
ValidityTue, 07 Feb 2023 00:00:00 GMT - Thu, 10 Aug 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1899
Origin: https://bt10t.weebly.com
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 25 Apr 2023 06:40:08 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=06060a19-4df7-4046-806a-f752df8187bb; Expires=Wed, 24 Apr 2024 06:40:08 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://bt10t.weebly.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
bt10t.weebly.com/uploads/1/4/0/0/140092274/bt-side_orig.png
199.34.228.54200 OK 534 kB URL GET HTTP/1.1 bt10t.weebly.com/uploads/1/4/0/0/140092274/bt-side_orig.png
IP 199.34.228.54:443
Requested by https://bt10t.weebly.com/
Certificate IssuerDigiCert Inc
Subject*.weebly.com
FingerprintEC:EB:B0:E9:41:98:A4:F2:3D:FD:73:D6:9C:73:6B:17:5E:50:3E:C6
ValidityWed, 09 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 769 x 621, 8-bit/color RGBA, non-interlaced\012- data
Size 534 kB (533564 bytes)
Hash 181732567d493be11621df6ada135a9c
3e211e943741567a1fcf0a8aeea3c4cea72acd0e
090113e8d91dc41407bfa3092e2a242c012d47925f6b64ee4a7a72795b3544bb
Analyzer Verdict Alert openphish BT Group plc
GET /uploads/1/4/0/0/140092274/bt-side_orig.png HTTP/1.1
Host: bt10t.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bt10t.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 06:40:07 GMT
Content-Type: image/png
Content-Length: 533564
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 19:50:40 GMT
x-rgw-object-type: Normal
ETag: "181732567d493be11621df6ada135a9c"
x-amz-request-id: tx0000000000000694f7123-0063d60120-c699baa-sfo1
X-Storage-Bucket: z0901
X-Storage-Object: 090113e8d91dc41407bfa3092e2a242c012d47925f6b64ee4a7a72795b3544bb
X-Host: grn30.sf2p.intern.weebly.net
Accept-Ranges: bytes