| | 93.47.117.135 | 200 OK | 6.1 kB |
URL User Request GET HTTP/1.1IP93.47.117.135:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (631) Hash016d385594085ef3cb40863824391dae a87a775e48c89f9f838f0a4d5cc9dfea7d32d550 c99569ccce4746ed9f735a7abe231d4f9388c17d5b9cb41f250198598d6df3a6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET / HTTP/1.1
Host: lyra.irixweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 10:20:01 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: -1
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Language: en-US
Set-Cookie: ZM_TEST=true; Secure
ZM_LOGIN_CSRF=7491a7c7-179a-4fc6-9f6e-7116ac45960a; Secure; HttpOnly
X-UA-Compatible: IE=edge
Vary: User-Agent, Accept-Encoding
Content-Encoding: gzip
|
|
| lyra.irixweb.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 | 93.47.117.135 | 200 OK | 13 kB |
URL GET HTTP/1.1lyra.irixweb.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 IP93.47.117.135:80
File typeASCII text, with very long lines (751) Hash681f65c5f0767f3eef49c9f814db7a79 0f1f1c14f45373246afbafbeaa74589a24c05147 ebe4a408f26b362d1e776556ce7575549edecc8ba8011f33d52b5e37e0faaaee
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 HTTP/1.1
Host: lyra.irixweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://lyra.irixweb.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 10:20:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Sat, 18 May 2024 11:20:01 GMT
Cache-Control: public, max-age=2595600
Vary: User-Agent, Accept-Encoding
Content-Encoding: gzip
|
|
| lyra.irixweb.com/img/questionMark.png | 93.47.117.135 | 200 OK | 5.4 kB |
URL GET HTTP/1.1lyra.irixweb.com/img/questionMark.png IP93.47.117.135:80
File typePNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced Hash5d496d46fe9801cf0e92af8337b3b6af 6f9e34028d56b0229759aad8dab4f0c30be30a7e 395b89ffffb5b6ea44d2933531396f8d2ae8ff84bae554a1c245d0777af59034
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/questionMark.png HTTP/1.1
Host: lyra.irixweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://lyra.irixweb.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 10:20:01 GMT
Content-Type: image/png
Content-Length: 5359
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Sat, 18 May 2024 11:20:01 GMT
Cache-Control: public, max-age=2595600
Last-Modified: Sat, 17 Feb 2024 02:31:40 GMT
Accept-Ranges: bytes
|
|
| lyra.irixweb.com/img/new-back-ground-image.png | 93.47.117.135 | 200 OK | 142 kB |
URL GET HTTP/1.1lyra.irixweb.com/img/new-back-ground-image.png IP93.47.117.135:80
File typePNG image data, 1440 x 1024, 8-bit colormap, non-interlaced Size142 kB (141674 bytes) Hash5a09af857512a874f5e2a6e01b80742b 8c87bcfd42ee8fab57f08c3664abd1424e608b6a 18b729cd6f3dd2b5657c1680e1388b825dc2c2d1e732e03478006714ac7ebc2d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/new-back-ground-image.png HTTP/1.1
Host: lyra.irixweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://lyra.irixweb.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 10:20:01 GMT
Content-Type: image/png
Content-Length: 141674
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Sat, 18 May 2024 11:20:01 GMT
Cache-Control: public, max-age=2595600
Last-Modified: Sat, 17 Feb 2024 02:31:40 GMT
Accept-Ranges: bytes
|
|
| lyra.irixweb.com/skins/_base/logos/LoginBanner.png?v=240217024957 | 93.47.117.135 | 200 OK | 18 kB |
URL GET HTTP/1.1lyra.irixweb.com/skins/_base/logos/LoginBanner.png?v=240217024957 IP93.47.117.135:80
File typePNG image data, 646 x 159, 8-bit/color RGBA, non-interlaced Hash2ae279fe9cf9754c36ae09a0e0ffefdb c2cc3a3c4f3a655178d31c9050dca9dfc362b9b8 cd9f7ba4d4b05e9fa1bbf57d12b039f7d1e61328bb1d76d3deef4c216e5ec0c5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /skins/_base/logos/LoginBanner.png?v=240217024957 HTTP/1.1
Host: lyra.irixweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://lyra.irixweb.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 10:20:01 GMT
Content-Type: image/png
Content-Length: 17558
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Sat, 18 May 2024 11:20:01 GMT
Cache-Control: public, max-age=2595600
Last-Modified: Sat, 17 Feb 2024 02:31:40 GMT
Accept-Ranges: bytes
|
|
| lyra.irixweb.com/img/logo/favicon.ico | 93.47.117.135 | 200 OK | 1.2 kB |
URL GET HTTP/1.1lyra.irixweb.com/img/logo/favicon.ico IP93.47.117.135:80
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8c7d1c14e4b9c42f07bd6b800d93b806 87e49826ffb3bc1ddac38feebb6bb98eaef568b2 1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/logo/favicon.ico HTTP/1.1
Host: lyra.irixweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://lyra.irixweb.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 10:20:01 GMT
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Expires: Sat, 18 May 2024 11:20:01 GMT
Cache-Control: public, max-age=2595600
Last-Modified: Sat, 17 Feb 2024 02:31:40 GMT
Accept-Ranges: bytes
|
|