| bt-communications-100106.weeblysite.com/ | 172.66.0.60 | 301 Moved Permanently | 167 B |
URL User Request GET HTTP/1.1bt-communications-100106.weeblysite.com/ IP172.66.0.60:80
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | OpenPhish | phishing | BT Group plc |
GET / HTTP/1.1
Host: bt-communications-100106.weeblysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6Ilg1T0l2ZTZSSXI0V1ZISi9td1ZINnc9PSIsInZhbHVlIjoibUh3KytsRnhNT2lUMWtGUEZrTW83NHdRblZqODAxbDJoRjlNTkZWOUlucm84VlVtM1pwMnNnVEpCMWhCWklCZEpNenJqeGlydXRYZEpsZkF1VHUrbWFEK1FBNmRkc3ZXRjFlU3F2elowUVFiVGx6dDlLNlpJNVN0Tk9DOTZGSGIiLCJtYWMiOiIzNTgyOTM0YzMyZTkxNzJkMGQ0NWE3Mjc2YTJlZDc1YjMwYTdlOWU1ZmFiZGU1YmUyNTZhYzlmOWZhOTRhZTIzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InpVaGZ6d1dVR0NFTTNFbDVOcUhYbUE9PSIsInZhbHVlIjoicis2Yndwa2ozd1ozS2tLcVUyaGYzK3RaUVhkZzJLaEJEVUNPOFFTUzVtTnBya2tIUlhiVWxpejFxL0IzT09nN0FnWmt4OUxWT3BMeG9KcDc4eENhSllJd1pKVWx6a0Uzd25hNWVwSkxXazVRd3E0RmF5YnZndll2Mi92MnRvUWMiLCJtYWMiOiJiMDdiOWQwNmExMmEwNDBjODZmMzZjZTkwNjY4OTg2YzU3MWNiZmQzODVmOTQ2OTJjNDI0NjY4ZmZjNjE4NjYxIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IjJRZmxqUU02YWRoeFZxZ2g0WTBwMHc9PSIsInZhbHVlIjoibFV5cnJSRXRmcCtXZzN2SUh1ajd6dmxQWjJiR1J2aFdJaWcxVEVOU24rWkYzRzBpRWV6Y1R4aFVvenVubzNtY1JJd0FQUXRkR0pGS08reUI0M1NnV3JOcS9ORmhsVk51L203YzN5dGxXN0NvNUtlRXVEcDlaTit0THJtUGFyblgiLCJtYWMiOiJiZjZhNDVlMWQxOGE1Zjc2ZmMwODYyMzcwNWZlMjczOWE3ZDU1NWY5OGQxOTBlMjI0ZmNjODZkNTdlN2EwN2QzIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 27 Apr 2024 04:46:59 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 27 Apr 2024 05:46:59 GMT
Location: https://bt-communications-100106.weeblysite.com/
Set-Cookie: __cf_bm=QArSIyPmxdw89.vrtjaqVHeuN9qWz0gwIni.5zo2tFY-1714193219-1.0.1.1-l6jr5rbZzg7cxdKgqcpF3UHJFOv0cSorfeUZq_LbT8wnsh7o9j6SGSqsZZgea0yfr.fzFrCzNH.SF9BYNTrpng; path=/; expires=Sat, 27-Apr-24 05:16:59 GMT; domain=.weeblysite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ac2c08bdb9b52d-OSL
|
| bt-communications-100106.weeblysite.com/ | 162.159.140.60 | 301 Moved Permanently | 1.1 kB |
URL User Request GET HTTP/1.1bt-communications-100106.weeblysite.com/ IP162.159.140.60:80
File typegzip compressed data, from Unix Hashe83a8adbbcc052c09e6ed90a4ff813be 1e3829462e19e333370a372563becbc0dd5f6187 9874c1c1a0c3f4defc4100882faed66efaa8408879709ff33cda03f74c0da600
Analyzer | Verdict | Alert | OpenPhish | phishing | BT Group plc |
GET / HTTP/1.1
Host: bt-communications-100106.weeblysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6Ilg1T0l2ZTZSSXI0V1ZISi9td1ZINnc9PSIsInZhbHVlIjoibUh3KytsRnhNT2lUMWtGUEZrTW83NHdRblZqODAxbDJoRjlNTkZWOUlucm84VlVtM1pwMnNnVEpCMWhCWklCZEpNenJqeGlydXRYZEpsZkF1VHUrbWFEK1FBNmRkc3ZXRjFlU3F2elowUVFiVGx6dDlLNlpJNVN0Tk9DOTZGSGIiLCJtYWMiOiIzNTgyOTM0YzMyZTkxNzJkMGQ0NWE3Mjc2YTJlZDc1YjMwYTdlOWU1ZmFiZGU1YmUyNTZhYzlmOWZhOTRhZTIzIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6InpVaGZ6d1dVR0NFTTNFbDVOcUhYbUE9PSIsInZhbHVlIjoicis2Yndwa2ozd1ozS2tLcVUyaGYzK3RaUVhkZzJLaEJEVUNPOFFTUzVtTnBya2tIUlhiVWxpejFxL0IzT09nN0FnWmt4OUxWT3BMeG9KcDc4eENhSllJd1pKVWx6a0Uzd25hNWVwSkxXazVRd3E0RmF5YnZndll2Mi92MnRvUWMiLCJtYWMiOiJiMDdiOWQwNmExMmEwNDBjODZmMzZjZTkwNjY4OTg2YzU3MWNiZmQzODVmOTQ2OTJjNDI0NjY4ZmZjNjE4NjYxIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IjJRZmxqUU02YWRoeFZxZ2g0WTBwMHc9PSIsInZhbHVlIjoibFV5cnJSRXRmcCtXZzN2SUh1ajd6dmxQWjJiR1J2aFdJaWcxVEVOU24rWkYzRzBpRWV6Y1R4aFVvenVubzNtY1JJd0FQUXRkR0pGS08reUI0M1NnV3JOcS9ORmhsVk51L203YzN5dGxXN0NvNUtlRXVEcDlaTit0THJtUGFyblgiLCJtYWMiOiJiZjZhNDVlMWQxOGE1Zjc2ZmMwODYyMzcwNWZlMjczOWE3ZDU1NWY5OGQxOTBlMjI0ZmNjODZkNTdlN2EwN2QzIiwidGFnIjoiIn0%3D; __cf_bm=izbB6DjTqIStnbRi6HwnNWH2tS0bJMEWdYPeFVx5Kdk-1714193219-1.0.1.1-beiiYpiHUuvI9jiSLpuvgB.GB.A2piIVGc9JUfLqQQRiBOLOPWTeSO3P7PKJsWtsGZY9fMdXfO39mwBxUMNzfQ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Sat, 27 Apr 2024 04:47:00 GMT
content-type: text/html; charset=UTF-8
cf-ray: 87ac2c08ef0e56cb-OSL
cf-cache-status: DYNAMIC
cache-control: no-cache, private
vary: Accept-Encoding
set-cookie: publishedsite-xsrf=eyJpdiI6Ik04ZVZKVk1nM2JMT0szTndPbHNlSmc9PSIsInZhbHVlIjoiMlN1UEdDcy9qVE9ueExOZUpud1VMZUxNYkNTamNCV1h4OXNuMFFNcWxsMm1PcDdXT1QvWkI0bWoyem54YnFjeVZHL3lONkFUVjJRUUNWd09YT3AvOFRUNzQ4SHJqWnNTdGovbDJUMFhKNUdHSmd4SVNMN3BVK3NhUjVkZHRFQUYiLCJtYWMiOiJkMTRmMWQ4OGM2NWNjYjVmN2Q4YmI1MGI3OWRmM2E2MDBmNjNlN2Q0YmM0NDhiYTcwZWExYTMzMDJhZDIwMjQ2IiwidGFnIjoiIn0%3D; expires=Sat, 11-May-2024 04:47:00 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6ImxzY3J6dVhuSFY5WXJvS1EyTi80Vnc9PSIsInZhbHVlIjoiU0R4blRXb2IvZ0lMZStnbUxPMnc3dFdLTEN0Z25xYlBNejhTSEtpQVRKOUJUcnhKNFJiWlVMbFl5RVNOUzVabkY1ZmMvWUhkQXliZGtCcUJnQ3U1RmxmaHhEaVJoYnBIZlpwa3ZaSVNuS0dNSEZMeFJDRHM3ZGNGMVNKMjZLSjQiLCJtYWMiOiI3YWYwYjhmOWYxNDk5ZjdhN2Q2M2FmZGUyOTY2NGVlNGE2YTlkODMwOGVhYmQ3Y2QxYjIzYjMxOTk4YWRhNjgwIiwidGFnIjoiIn0%3D; expires=Sat, 11-May-2024 04:47:00 GMT; Max-Age=1209600; path=/; samesite=lax
PublishedSiteSession=eyJpdiI6ImhlcFU4eWwxVEVFZTJrUzdJMDVmbkE9PSIsInZhbHVlIjoiOVA5dXlHMXdadzMwY1RWbVFycEVSRTRVNTg4bVNoQjFUV3E2d1ZJMk9WS0FPSlVJTDBxU3ppdUs0SW5lWWNkT3EvZC9aVVpkQTFQaHlvKzBNTlZacjRBY01IcWY1b0RRekYrenplazl6R21UMjI5aXdvblNiSU1KYWwvRGswdjMiLCJtYWMiOiIyODY4NWZjYmM2MjViNzA3ZTY5NzY0NDQ3ZmI2MTU2Mjc2ZmQxOTYyZTExNDczNjRkOWQ0NDQ2NmE4ZWMwNTU5IiwidGFnIjoiIn0%3D; expires=Sat, 11-May-2024 04:47:00 GMT; Max-Age=1209600; path=/; httponly; samesite=lax
x-host: blu68.sf2p.intern.weebly.net
x-request-id: d523aa7b7fdba3e9107d34b22af78c87
x-revision: 1c066ce1354298d3ffae6e8d08eda847020c4f3e
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
|
| bt-communications-100106.weeblysite.com/favicon.ico | 162.159.140.60 | 200 OK | 1 B |
URL GET HTTP/2bt-communications-100106.weeblysite.com/favicon.ico IP162.159.140.60:443
Requested byhttps://bt-communications-100106.weeblysite.com/ CertificateIssuerCloudflare, Inc. Subjectweeblysite.com FingerprintB1:46:C7:51:E8:C2:74:1A:AE:4E:AD:99:BF:5E:02:6E:F0:83:81:EF ValidityFri, 29 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | OpenPhish | phishing | BT Group plc |
GET /favicon.ico HTTP/1.1
Host: bt-communications-100106.weeblysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bt-communications-100106.weeblysite.com/
Cookie: publishedsite-xsrf=eyJpdiI6Ik04ZVZKVk1nM2JMT0szTndPbHNlSmc9PSIsInZhbHVlIjoiMlN1UEdDcy9qVE9ueExOZUpud1VMZUxNYkNTamNCV1h4OXNuMFFNcWxsMm1PcDdXT1QvWkI0bWoyem54YnFjeVZHL3lONkFUVjJRUUNWd09YT3AvOFRUNzQ4SHJqWnNTdGovbDJUMFhKNUdHSmd4SVNMN3BVK3NhUjVkZHRFQUYiLCJtYWMiOiJkMTRmMWQ4OGM2NWNjYjVmN2Q4YmI1MGI3OWRmM2E2MDBmNjNlN2Q0YmM0NDhiYTcwZWExYTMzMDJhZDIwMjQ2IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6ImxzY3J6dVhuSFY5WXJvS1EyTi80Vnc9PSIsInZhbHVlIjoiU0R4blRXb2IvZ0lMZStnbUxPMnc3dFdLTEN0Z25xYlBNejhTSEtpQVRKOUJUcnhKNFJiWlVMbFl5RVNOUzVabkY1ZmMvWUhkQXliZGtCcUJnQ3U1RmxmaHhEaVJoYnBIZlpwa3ZaSVNuS0dNSEZMeFJDRHM3ZGNGMVNKMjZLSjQiLCJtYWMiOiI3YWYwYjhmOWYxNDk5ZjdhN2Q2M2FmZGUyOTY2NGVlNGE2YTlkODMwOGVhYmQ3Y2QxYjIzYjMxOTk4YWRhNjgwIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6ImhlcFU4eWwxVEVFZTJrUzdJMDVmbkE9PSIsInZhbHVlIjoiOVA5dXlHMXdadzMwY1RWbVFycEVSRTRVNTg4bVNoQjFUV3E2d1ZJMk9WS0FPSlVJTDBxU3ppdUs0SW5lWWNkT3EvZC9aVVpkQTFQaHlvKzBNTlZacjRBY01IcWY1b0RRekYrenplazl6R21UMjI5aXdvblNiSU1KYWwvRGswdjMiLCJtYWMiOiIyODY4NWZjYmM2MjViNzA3ZTY5NzY0NDQ3ZmI2MTU2Mjc2ZmQxOTYyZTExNDczNjRkOWQ0NDQ2NmE4ZWMwNTU5IiwidGFnIjoiIn0%3D; __cf_bm=izbB6DjTqIStnbRi6HwnNWH2tS0bJMEWdYPeFVx5Kdk-1714193219-1.0.1.1-beiiYpiHUuvI9jiSLpuvgB.GB.A2piIVGc9JUfLqQQRiBOLOPWTeSO3P7PKJsWtsGZY9fMdXfO39mwBxUMNzfQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 27 Apr 2024 04:47:01 GMT
content-type: application/octet-stream
content-length: 1
cf-ray: 87ac2c0b985556cb-OSL
cf-cache-status: DYNAMIC
accept-ranges: bytes
cache-control: max-age=315360000
etag: "93b885adfe0da089cdf634904fd59f71"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 14 Apr 2020 20:17:36 GMT
x-amz-meta-s3cmd-attrs: atime:1586895392/ctime:1586718963/gid:0/gname:root/md5:93b885adfe0da089cdf634904fd59f71/mode:33188/mtime:1586718963/uid:0/uname:root
x-amz-request-id: tx00000e30a355b5a44b852-0065d8548c-e95274c-sfo1
x-host: blu72.sf2p.intern.weebly.net
x-request-id: d6ef03280daaef0ebbb928332c74ac10
x-revision: 1c066ce1354298d3ffae6e8d08eda847020c4f3e
x-rgw-object-type: Normal
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
|